OS command injection vulnerability in multiple digital video recorders provided by TAKENAKA ENGINEERING CO., LTD. allows a remote authenticated attacker to execute an arbitrary OS command on the device or alter the device settings.
Metrics
Affected Vendors & Products
References
History
Wed, 18 Sep 2024 15:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Takenaka Engineering
Takenaka Engineering ahd04t-a Firmware Takenaka Engineering ahd08t-a Firmware Takenaka Engineering ahd16t-a Firmware Takenaka Engineering hdvr-1600 Firmware Takenaka Engineering hdvr-400 Firmware Takenaka Engineering hdvr-800 Firmware Takenaka Engineering nvr04t-a Firmware Takenaka Engineering nvr08t-a Firmware Takenaka Engineering nvr16t-a Firmware |
|
Weaknesses | CWE-78 | |
CPEs | cpe:2.3:o:takenaka_engineering:ahd04t-a_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:takenaka_engineering:ahd08t-a_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:takenaka_engineering:ahd16t-a_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:takenaka_engineering:hdvr-1600_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:takenaka_engineering:hdvr-400_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:takenaka_engineering:hdvr-800_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:takenaka_engineering:nvr04t-a_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:takenaka_engineering:nvr08t-a_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:takenaka_engineering:nvr16t-a_firmware:*:*:*:*:*:*:*:* |
|
Vendors & Products |
Takenaka Engineering
Takenaka Engineering ahd04t-a Firmware Takenaka Engineering ahd08t-a Firmware Takenaka Engineering ahd16t-a Firmware Takenaka Engineering hdvr-1600 Firmware Takenaka Engineering hdvr-400 Firmware Takenaka Engineering hdvr-800 Firmware Takenaka Engineering nvr04t-a Firmware Takenaka Engineering nvr08t-a Firmware Takenaka Engineering nvr16t-a Firmware |
|
Metrics |
cvssV3_1
|
Wed, 18 Sep 2024 06:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | OS command injection vulnerability in multiple digital video recorders provided by TAKENAKA ENGINEERING CO., LTD. allows a remote authenticated attacker to execute an arbitrary OS command on the device or alter the device settings. | |
References |
|
MITRE
Status: PUBLISHED
Assigner: jpcert
Published: 2024-09-18T06:14:02.040Z
Updated: 2024-09-18T14:57:29.697Z
Reserved: 2024-09-17T04:33:04.643Z
Link: CVE-2024-43778
Vulnrichment
Updated: 2024-09-18T14:48:37.475Z
NVD
Status : Awaiting Analysis
Published: 2024-09-18T07:15:03.007
Modified: 2024-09-20T12:30:51.220
Link: CVE-2024-43778
Redhat
No data.