EUVD-2018-1488

Malware in sbrugna...

Multiple vulnerabilities in Panasonic BN-SDWBP3

Overview BN-SDWBP3 provided by Panasonic Corporation is a Wi-Fi Reader/Writer for SD Memory Cards. BN-SDWBP3 contains multiple vulnerabilities listed below. Improper Authentication CWE-287 - CVE-2018-0676 OS Command InjectionCWE-78 - CVE-2018-0677 Buffer Overflow CWE-119 - CVE-2018-0678 Taizoh...

CVE-2018-0677

BN-SDWBP3 firmware version 1.0.9 and earlier allows attacker with administrator rights on the same network segment to execute arbitrary OS commands via unspecified vectors...

CVE-2018-0678

Buffer overflow in BN-SDWBP3 firmware version 1.0.9 and earlier allows an attacker on the same network segment to execute arbitrary code via unspecified vectors...

CVE-2018-0678

Buffer overflow in BN-SDWBP3 firmware version 1.0.9 and earlier allows an attacker on the same network segment to execute arbitrary code via unspecified vectors...

Design/Logic Flaw

BN-SDWBP3 firmware version 1.0.9 and earlier allows attacker with administrator rights on the same network segment to execute arbitrary OS commands via unspecified vectors...

Buffer overflow

Buffer overflow in BN-SDWBP3 firmware version 1.0.9 and earlier allows an attacker on the same network segment to execute arbitrary code via unspecified vectors...

CVE-2018-0678

Buffer overflow in BN-SDWBP3 firmware version 1.0.9 and earlier allows an attacker on the same network segment to execute arbitrary code via unspecified vectors...

CVE-2018-0676

BN-SDWBP3 firmware version 1.0.9 and earlier allows an attacker on the same network segment to bypass authentication to access to the management screen and execute an arbitrary command via unspecified vectors...

CVE-2018-0677

CVE-2018-0677 affects Panasonic BN-SDWBP3 firmware versions 1.0.9 and earlier. The JVN entry confirms an OS Command Injection vulnerability exploitable by a user on the same LAN who can access the product with administrative privileges; the exposure is via unspecified vectors, with impact limited...

CVE-2018-0676

The Panasonic BN-SDWBP3 firmware (v1.0.9 and earlier) is affected by CVE-2018-0676 due to an improper authentication flaw. An attacker on the same network segment can bypass authentication to access the device’s management screen and execute an arbitrary command via unspecified vectors. Related s...

CVE-2018-0678

Panasonic BN-SDWBP3 firmware (1.0.9 and earlier) is affected by CVE-2018-0678, a Buffer Overflow (CWE-119). The vulnerability allows an attacker on the same LAN with administrative access to cause arbitrary code execution or similar impact via unspecified vectors. The JVN entry for BN-SDWBP3 list...

CVE-2018-0677

BN-SDWBP3 firmware version 1.0.9 and earlier allows attacker with administrator rights on the same network segment to execute arbitrary OS commands via unspecified vectors...