EUVD-2023-35514

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

OS command injection in Wi-Fi AP UNIT allows remote execution of commands by authenticated admins.

Reporter	Title	Published	Views	Family All 11
ATTACKERKB	CVE-2023-31198	13 Jun 202310:15	–	attackerkb
CNNVD	Inaba Denki Sangyo Wi-Fi AP UNIT 操作系统命令注入漏洞	13 Jun 202300:00	–	cnnvd
CVE	CVE-2023-31198	13 Jun 202300:00	–	cve
Cvelist	CVE-2023-31198	13 Jun 202300:00	–	cvelist
Japan Vulnerability Notes	JVN#28412757: Multiple vulnerabilities in Inaba Denki Sangyo Wi-Fi AP UNIT	9 Jun 202300:00	–	jvn
Japan Vulnerability Notes	Multiple vulnerabilities in Inaba Denki Sangyo Wi-Fi AP UNIT	9 Jun 202306:18	–	jvn
NVD	CVE-2023-31198	13 Jun 202310:15	–	nvd
Prion	Command injection	13 Jun 202310:15	–	prion
Positive Technologies	PT-2023-23224 · Unknown · Ac-Pd-Wapum-P +5	13 Jun 202300:00	–	ptsecurity
RedhatCVE	CVE-2023-31198	9 Jan 202612:34	–	redhatcve

[
  {
    "enisaIdVendor": [
      {
        "id": "7f876031-fe43-39de-9bcc-9aad2156e86a",
        "vendor": {
          "name": "Inaba Denki Sangyo Co., Ltd."
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "57547f0c-4e8b-3382-adb9-3351e13f7f56",
        "product": {
          "name": "Wi-Fi AP UNIT"
        },
        "product_version": "AC-PD-WAPU v1.05_B04 and earlier, AC-PD-WAPUM v1.05_B04 and earlier, AC-PD-WAPU-P v1.05_B04P and earlier, AC-PD-WAPUM-P v1.05_B04P and earlier, AC-WAPU-300 v1.00_B07 and earlier, AC-WAPUM-300 v1.00_B07 and earlier, AC-WAPU-300-P v1.00_B07 and earlier, and AC-WAPUM-300-P v1.00_B07 and earlier"
      }
    ]
  }
]

Source	Link
jvn	www.jvn.jp/en/jp/JVN28412757/
inaba	www.inaba.co.jp/abaniact/news/Wi-Fi_AP_UNIT%E3%81%AB%E3%81%8A%E3%81%91%E3%82%8B%E8%A4%87%E6%95%B0%E3%81%AE%E8%84%86%E5%BC%B1%E6%80%A7%E3%81%AB%E3%81%A4%E3%81%84%E3%81%A6.pdf

03 Oct 2025 20:07Current

7High risk

Vulners AI Score7

CVSS 3.17.2

EPSS0.01413

SSVC