EUVD-2023-44376

Malicious code in bioql PyPI...

CVE-2024-3016

NEC Platforms DT900 and DT900S Series 5.0.0.0 – v5.3.4.4, v5.4.0.0 – v5.6.0.20 allows an attacker to access a non-documented the system settings to change settings via local network with unauthenticated user...

Hidden Functionality vulnerability in DT900

Overview DT900 contains a Hidden Functionality vulnerabilityCWE-912. Specified versions allow an attacker to access the system setting. reported by Mr. Gianluca Altomani and Mr. Manuel Romei. for NEC-PSIRT Impact Regarding the impact of the vulnerability, please refer to the vendor advisory...

CVE-2024-3016

NEC Platforms DT900 and DT900S Series 5.0.0.0 – v5.3.4.4, v5.4.0.0 – v5.6.0.20 allows an attacker to access a non-documented the system settings to change settings via local network with unauthenticated user...

CVE-2024-3016

CVE-2024-3016 affects NEC Platforms DT900/DT900S Series. Affects firmware ranges 5.0.0.0–5.3.4.4 and 5.4.0.0–5.6.0.20. The issue lets an unauthenticated attacker access non-documented system settings via the local network and change settings. Public documents corroborate: Red Hat and JVNDB entrie...

CVE-2024-3016

NEC Platforms DT900 and DT900S Series 5.0.0.0 – v5.3.4.4, v5.4.0.0 – v5.6.0.20 allows an attacker to access a non-documented the system settings to change settings via local network with unauthenticated user...

NEC Platforms DT900 Series 安全漏洞

NEC Platforms DT900 Series is a series of IP desktop phones from Japan Electric NEC. A security vulnerability exists in the NEC Platforms DT900 Series that originates from allowing access to system settings...

PT-2024-23215 · Nec · Dt900 +1

Name of the Vulnerable Software and Affected Versions: NEC Platforms DT900 and DT900S Series versions 5.0.0.0 through 5.3.4.4 NEC Platforms DT900 and DT900S Series versions 5.4.0.0 through 5.6.0.20 Description: The issue allows an attacker to access non-documented system settings and change them...

OS command injection vulnerability in DT900

Overview DT900 contains an OS command injection vulnerability. reported by Mr. Gianluca Altomani. for NEC-PSIRT Impact Regarding the impact of the vulnerability, please refer to the vendor advisory. Solution Please refer to the 'Vendor Information' section for the official countermeasure and take...

CVE-2023-3741

An OS Command injection vulnerability in NEC Platforms DT900 and DT900S Series all versions allows an attacker to execute any command on the device...

Command injection

An OS Command injection vulnerability in NEC Platforms DT900 and DT900S Series all versions allows an attacker to execute any command on the device...

CVE-2023-3741

The CVE-2023-3741 entry describes an OS command injection vulnerability in NEC Platforms DT900 and DT900S Series IP phones (all versions), allowing an attacker to execute arbitrary commands on the device. According to connected sources, exploitation is possible over the network with no privileges...

CVE-2023-3741

An OS Command injection vulnerability in NEC Platforms DT900 and DT900S Series all versions allows an attacker to execute any command on the device...

CVE-2023-3741

An OS Command injection vulnerability in NEC Platforms DT900 and DT900S Series all versions allows an attacker to execute any command on the device...

PT-2023-25947 · Nec · Nec Platforms Dt900

Name of the Vulnerable Software and Affected Versions: NEC Platforms DT900 and DT900S Series all versions Description: An OS Command injection issue allows an attacker to execute any command on the device. This issue was found inside the firmware of a NEC telephone. Recommendations: For NEC...

NEC Platforms DT900 Series and DT900S Series Operating System Command Injection Vulnerability

The NEC Platforms DT900 Series and NEC Platforms DT900S Series are both a series of IP desktop phones from Nippon Electric NEC. A security vulnerability exists in the NEC Platforms DT900 Series and DT900S Series that stems from the presence of an operating system command injection vulnerability...

PT-2022-12217 · Nec · Univerge Dt 930 +5

Name of the Vulnerable Software and Affected Versions: UNIVERGE DT 820 versions 3.2.7.0 and prior UNIVERGE DT 830 versions 5.2.7.0 and prior UNIVERGE DT 930 versions 2.4.0.0 and prior IP Phone Manager versions 8.9.1 and prior Data Maintenance Tool for DT900 Series versions 5.3.0.0 and prior Data...

JVN#13464252: UNIVERGE DT Series vulnerable to missing encryption of sensitive data

UNIVERGE IP Phone DT Series and PC tools for DT Series maintainers IP Phone Manager and Data Maintenance Tool provided by NEC Platforms, Ltd. contain a missing encryption vulnerability CWE-311. Impact If a remote attacker who can access to the internal network setting the product analyzes packets...