9 matches found
CVE-2025-64444
Improper neutralization of special elements used in an OS command 'OS Command Injection' issue exists in NCP-HG100 1.4.48.16 and earlier. If exploited, a remote attacker who has obtained the authentication information to log in to the management page of the product may execute an arbitrary OS...
NCP-HG100 vulnerable to OS command injection
Overview NCP-HG100 provided by Sony Network Communications Inc. and used in MANOMA service contains the following vulnerability. OS command injection CWE-78 - CVE-2025-64444 HIROKI IMAI of LAC Co., Ltd. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information...
CVE-2025-64444
Improper neutralization of special elements used in an OS command 'OS Command Injection' issue exists in NCP-HG100 1.4.48.16 and earlier. If exploited, a remote attacker who has obtained the authentication information to log in to the management page of the product may execute an arbitrary OS...
CVE-2025-64444
Improper neutralization of special elements used in an OS command 'OS Command Injection' issue exists in NCP-HG100 1.4.48.16 and earlier. If exploited, a remote attacker who has obtained the authentication information to log in to the management page of the product may execute an arbitrary OS...
CVE-2025-64444
Improper neutralization of special elements used in an OS command 'OS Command Injection' issue exists in NCP-HG100 1.4.48.16 and earlier. If exploited, a remote attacker who has obtained the authentication information to log in to the management page of the product may execute an arbitrary OS...
EUVD-2025-186560
Improper neutralization of special elements used in an OS command 'OS Command Injection' issue exists in NCP-HG100 1.4.48.16 and earlier. If exploited, a remote attacker who has obtained the authentication information to log in to the management page of the product may execute an arbitrary OS...
CVE-2025-64444
CVE-2025-64444 affects NCP-HG100 (1.4.48.16 and earlier). The issue is an OS command injection due to improper neutralization of special elements in commands, allowing a remote attacker who has authenticated access to the management page to execute arbitrary OS commands with root privileges. Red ...
PT-2025-46941
Name of the Vulnerable Software and Affected Versions NCP-HG100 versions 1.4.48.16 and earlier Description An issue exists where special elements are not properly neutralized when used in operating system commands, potentially leading to OS Command Injection. A remote attacker who has valid...
Sony NCP-HG100 操作系统命令注入漏洞
The Sony NCP-HG100 is a webcam from Sony Japan. An operating system command injection vulnerability exists in Sony NCP-HG100 version 1.4.48.16 and earlier, which stems from improper neutralization of a special element and can lead to remote command execution...