Lucene search

[email protected]NVD:CVE-2023-49713

HistoryDec 12, 2023 - 10:15 a.m.

CVE-2023-49713

2023-12-1210:15:10

CWE-400

[email protected]

web.nvd.nist.gov

denial-of-service

netbios

hmi gc-a2

remote attacker

crafted packets

specific ports

cve-2023-49713

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

34.9%

JSON

Denial-of-service (DoS) vulnerability exists in NetBIOS service of HMI GC-A2 series. If a remote unauthenticated attacker sends a specially crafted packets to specific ports, a denial-of-service (DoS) condition may occur.

Affected configurations

Nvd

Node

jtektgc-a22w-cw_firmware

AND

jtektgc-a22w-cwMatch-

Node

jtektgc-a24w-c\(w\)_firmware

AND

jtektgc-a24w-c\(w\)Match-

Node

jtektgc-a26w-c\(w\)_firmware

AND

jtektgc-a26w-c\(w\)Match-

Node

jtektgc-a24_firmware

AND

jtektgc-a24Match-

Node

jtektgc-a24-m_firmware

AND

jtektgc-a24-mMatch-

Node

jtektgc-a25_firmware

AND

jtektgc-a25Match-

Node

jtektgc-a26_firmware

AND

jtektgc-a26Match-

Node

jtektgc-a26-j2_firmware

AND

jtektgc-a26-j2Match-

Node

jtektgc-a27-c_firmware

AND

jtektgc-a27-cMatch-

Node

jtektgc-a28-c_firmware

AND

jtektgc-a28-cMatch-

VendorProductVersionCPE
jtektgc-a22w-cw_firmware*cpe:2.3:o:jtekt:gc-a22w-cw_firmware:*:*:*:*:*:*:*:*
jtektgc-a22w-cw-cpe:2.3:h:jtekt:gc-a22w-cw:-:*:*:*:*:*:*:*
jtektgc-a24w-c\(w\)_firmware*cpe:2.3:o:jtekt:gc-a24w-c\(w\)_firmware:*:*:*:*:*:*:*:*
jtektgc-a24w-c\(w\)-cpe:2.3:h:jtekt:gc-a24w-c\(w\):-:*:*:*:*:*:*:*
jtektgc-a26w-c\(w\)_firmware*cpe:2.3:o:jtekt:gc-a26w-c\(w\)_firmware:*:*:*:*:*:*:*:*
jtektgc-a26w-c\(w\)-cpe:2.3:h:jtekt:gc-a26w-c\(w\):-:*:*:*:*:*:*:*
jtektgc-a24_firmware*cpe:2.3:o:jtekt:gc-a24_firmware:*:*:*:*:*:*:*:*
jtektgc-a24-cpe:2.3:h:jtekt:gc-a24:-:*:*:*:*:*:*:*
jtektgc-a24-m_firmware*cpe:2.3:o:jtekt:gc-a24-m_firmware:*:*:*:*:*:*:*:*
jtektgc-a24-m-cpe:2.3:h:jtekt:gc-a24-m:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
jtekt	gc-a22w-cw_firmware	*	cpe:2.3:o:jtekt:gc-a22w-cw_firmware::::::::
jtekt	gc-a22w-cw	-	cpe:2.3:h:jtekt:gc-a22w-cw:-:::::::*
jtekt	gc-a24w-c\(w\)_firmware	*	cpe:2.3:o:jtekt:gc-a24w-c\(w\)_firmware::::::::
jtekt	gc-a24w-c\(w\)	-	cpe:2.3:h:jtekt:gc-a24w-c\(w\):-:::::::*
jtekt	gc-a26w-c\(w\)_firmware	*	cpe:2.3:o:jtekt:gc-a26w-c\(w\)_firmware::::::::
jtekt	gc-a26w-c\(w\)	-	cpe:2.3:h:jtekt:gc-a26w-c\(w\):-:::::::*
jtekt	gc-a24_firmware	*	cpe:2.3:o:jtekt:gc-a24_firmware::::::::
jtekt	gc-a24	-	cpe:2.3:h:jtekt:gc-a24:-:::::::*
jtekt	gc-a24-m_firmware	*	cpe:2.3:o:jtekt:gc-a24-m_firmware::::::::
jtekt	gc-a24-m	-	cpe:2.3:h:jtekt:gc-a24-m:-:::::::*

Rows per page:

1-10 of 201

References

jvn.jp/en/jp/JVN34145838/

www.electronics.jtekt.co.jp/en/topics/202312116562/

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

34.9%

JSON

Related for NVD:CVE-2023-49713

cve1 prion1 cvelist1 jvn1