33 matches found
CVE-2020-12133
The Apros Evolution, ConsciusMap, and Furukawa provisioning systems through 2.8.1 allow remote code execution because of javax.faces.ViewState Java deserialization...
EUVD-2021-23955
Malware in sbrugna...
EUVD-2021-23953
Malware in sbrugna...
EUVD-2020-4448
Malware in sbrugna...
CVE-2021-37386
Furukawa Electric LatAm 423-41W/AC before v1.1.4 and LD421-21W before v1.3.3 were discovered to contain an HTML injection vulnerability via the serial number update function...
CVE-2021-37384
RCE Remote Code Execution vulnerability was found in some Furukawa ONU models, this vulnerability allows remote unauthenticated users to send arbitrary commands to the device via web interface...
furukawa-naika.net Improper Access Control vulnerability OBB-3858171
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
CVE-2021-37384
RCE Remote Code Execution vulnerability was found in some Furukawa ONU models, this vulnerability allows remote unauthenticated users to send arbitrary commands to the device via web interface...
CVE-2021-37384
RCE Remote Code Execution vulnerability was found in some Furukawa ONU models, this vulnerability allows remote unauthenticated users to send arbitrary commands to the device via web interface...
Command injection
A remote command execution RCE vulnerability in the web interface component of Furukawa Electric LatAM 423-41W/AC before v1.1.4 and LD421-21W before v1.3.3 allows unauthenticated attackers to send arbitrary commands to the device via unspecified vectors...
CVE-2021-37386
Furukawa Electric LatAm 423-41W/AC before v1.1.4 and LD421-21W before v1.3.3 were discovered to contain an HTML injection vulnerability via the serial number update function...
CVE-2021-37386
Furukawa Electric LatAm 423-41W/AC before v1.1.4 and LD421-21W before v1.3.3 were discovered to contain an HTML injection vulnerability via the serial number update function...
Design/Logic Flaw
Furukawa Electric LatAm 423-41W/AC before v1.1.4 and LD421-21W before v1.3.3 were discovered to contain an HTML injection vulnerability via the serial number update function...
CVE-2021-37386
Furukawa Electric LatAm 423-41W/AC before v1.1.4 and LD421-21W before v1.3.3 were discovered to contain an HTML injection vulnerability via the serial number update function...
Furukawa Electric 423-41W/AC 跨站脚本漏洞
The Furukawa Electric 423-41W/AC is a wireless router from Furukawa Electric Japan. A cross-site scripting vulnerability exists in the Furukawa Electric 423-41W/AC v1.1.4 prior and LD421-21W v1.3.3 prior, which stems from an HTML injection vulnerability via the serial number update feature...
CVE-2021-37386
Affected products: Furukawa Electric LatAm 423-41W/AC (pre-1.1.4) and LD421-21W (pre-1.3.3). Issue: HTML injection via the serial number update function (CVE-2021-37386). Root cause / vector: HTML injection vulnerability in the serial number update feature. Impact (as stated): Confidentiality, in...
PT-2023-12317 · Furukawa · Furukawa Ld421-21W +2
Name of the Vulnerable Software and Affected Versions: Furukawa ONU models affected versions not specified Furukawa 423-41W/AC versions prior to 1.1.4 Furukawa LD421-21W versions prior to 1.3.3 Description: A Remote Code Execution RCE vulnerability was found, allowing remote unauthenticated users...
PT-2023-12318 · Furukawa Electric · Furukawa Electric Latam Ld421-21W +1
Name of the Vulnerable Software and Affected Versions: Furukawa Electric LatAm 423-41W/AC versions prior to 1.1.4 Furukawa Electric LatAm LD421-21W versions prior to 1.3.3 Description: The issue is related to an HTML injection vulnerability via the serial number update function. This vulnerabilit...
CVE-2021-37384
CVE-2021-37384 affects Furukawa ONU models with vulnerable web interface components (e.g., Furukawa 423-41W/AC before 1.1.4 and LD421-21W before 1.3.3). The root cause is a Remote Code Execution via the web interface that allows unauthenticated remote command execution. Impact is high (as indicat...
CVE-2021-37384
RCE Remote Code Execution vulnerability was found in some Furukawa ONU models, this vulnerability allows remote unauthenticated users to send arbitrary commands to the device via web interface...