CVE-2024-28041

2024-03-2503:42:17

jpcert

www.cve.org

vulnerability

hgw bl1500hm

arbitrary command

AI Score

7.3

Confidence

High

EPSS

Percentile

9.0%

JSON

HGW BL1500HM Ver 002.001.013 and earlier allows a network-adjacent unauthenticated attacker to execute an arbitrary command.

CNA Affected

[
  {
    "vendor": "KDDI CORPORATION",
    "product": "HGW BL1500HM",
    "versions": [
      {
        "version": "Ver 002.001.013 and earlier",
        "status": "affected"
      }
    ]
  }
]

References

jvn.jp/en/vu/JVNVU93546510/

www.au.com/support/service/internet/guide/modem/bl1500hm/firmware/