47 matches found
EUVD-2018-8398
Malware in sbrugna...
EUVD-2018-8397
Malware in sbrugna...
EUVD-2023-45606
Malicious code in bioql PyPI...
EUVD-2023-42956
Malicious code in bioql PyPI...
EUVD-2023-43153
Malicious code in bioql PyPI...
CVE-2023-39222
OS command injection vulnerability in FURUNO SYSTEMS wireless LAN access point devices allows an authenticated user to execute an arbitrary OS command that is not intended to be executed from the web interface by sending a specially crafted request. Affected products and versions are as follows:...
CVE-2023-41086
Cross-site request forgery CSRF vulnerability exists in FURUNO SYSTEMS wireless LAN access point devices. If a user views a malicious page while logged in, unintended operations may be performed. Affected products and versions are as follows: ACERA 1210 firmware ver.02.36 and earlier, ACERA 1150i...
FURUNO SYSTEMS Managed Switch ACERA 9010 running in non MS mode with the initial configuration has no password
Overview In the initial configuration of Managed Switch ACERA 9010 provided by FURUNO Systems Co., Ltd., the password is empty CWE-258 and the remote access service is enabled. The products are affected only when running in non MS mode with the initial configuration. FURUNO SYSTEMS Co.,Ltd...
FURUNO ACERA 安全漏洞
FURUNO ACERA is a series of switches from FURUNO Japan. A security vulnerability exists in the FURUNO ACERA 9010 v02.04 and earlier firmware versions, ACERA 9010-24 v02.04 and earlier firmware versions, which originates from an unauthenticated attacker being able to log in to the product without ...
Multiple vulnerabilities in multiple FURUNO SYSTEMS wireless LAN access point devices in ST(Standalone) mode
Overview Wireless LAN access point devices provided by FURUNO SYSTEMS Co.,Ltd., running in STStandalone mode, contain multiple vulnerabilities listed below. OS Command Injection CWE-78 - CVE-2023-39222 Cross-site Scripting CWE-79 - CVE-2023-39429 Cross-Site Request Forgery CWE-352 - CVE-2023-4108...
CVE-2023-39429
Cross-site scripting vulnerability in FURUNO SYSTEMS wireless LAN access point devices allows an authenticated user to inject an arbitrary script via a crafted configuration. Affected products and versions are as follows: ACERA 1210 firmware ver.02.36 and earlier, ACERA 1150i firmware ver.01.35 a...
CVE-2023-39429
Cross-site scripting vulnerability in FURUNO SYSTEMS wireless LAN access point devices allows an authenticated user to inject an arbitrary script via a crafted configuration. Affected products and versions are as follows: ACERA 1210 firmware ver.02.36 and earlier, ACERA 1150i firmware ver.01.35 a...
CVE-2023-39222
OS command injection vulnerability in FURUNO SYSTEMS wireless LAN access point devices allows an authenticated user to execute an arbitrary OS command that is not intended to be executed from the web interface by sending a specially crafted request. Affected products and versions are as follows:...
CVE-2023-41086
Cross-site request forgery CSRF vulnerability exists in FURUNO SYSTEMS wireless LAN access point devices. If a user views a malicious page while logged in, unintended operations may be performed. Affected products and versions are as follows: ACERA 1210 firmware ver.02.36 and earlier, ACERA 1150i...
CVE-2023-39222
OS command injection vulnerability in FURUNO SYSTEMS wireless LAN access point devices allows an authenticated user to execute an arbitrary OS command that is not intended to be executed from the web interface by sending a specially crafted request. Affected products and versions are as follows:...
Cross site scripting
Cross-site scripting vulnerability in FURUNO SYSTEMS wireless LAN access point devices allows an authenticated user to inject an arbitrary script via a crafted configuration. Affected products and versions are as follows: ACERA 1210 firmware ver.02.36 and earlier, ACERA 1150i firmware ver.01.35 a...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability exists in FURUNO SYSTEMS wireless LAN access point devices. If a user views a malicious page while logged in, unintended operations may be performed. Affected products and versions are as follows: ACERA 1210 firmware ver.02.36 and earlier, ACERA 1150i...
Command injection
OS command injection vulnerability in FURUNO SYSTEMS wireless LAN access point devices allows an authenticated user to execute an arbitrary OS command that is not intended to be executed from the web interface by sending a specially crafted request. Affected products and versions are as follows:...
CVE-2023-41086
Cross-site request forgery CSRF vulnerability exists in FURUNO SYSTEMS wireless LAN access point devices. If a user views a malicious page while logged in, unintended operations may be performed. Affected products and versions are as follows: ACERA 1210 firmware ver.02.36 and earlier, ACERA 1150i...
CVE-2023-41086
CVE-2023-41086 affects Furuno SYSTEMS wireless LAN APs running in ST (Standalone) mode. A CSRF vulnerability may allow unintended operations when a logged-in user views a malicious page. Affected firmware: ACERA 1210 (≤02.36), 1150i (≤01.35), 1150w (≤01.35), 1110 (≤01.76), 1020 (≤01.86), 1010 (≤0...