[Japanese] | |
JVNDB-2022-001477 | |
Netcommunity OG410X and OG810X VoIP gateway/Hikari VoIP adapter for business offices vulnerable to OS command injection | |
Overview | |
Netcommunity OG410X and OG810X series provided by NIPPON TELEGRAPH AND TELEPHONE EAST CORPORATION and NIPPON TELEGRAPH AND TELEPHONE WEST CORPORATION contain an OS command injection vulnerability (CWE-78, CVE-2022-22986). | |
CVSS Severity (What is CVSS?) | |
CVSS V3 Severity:
Base Metrics 8.0 (High) [Other]
| |
Affected Products | |
| |
NIPPON TELEGRAPH AND TELEPHONE WEST CORPORATION | |
| |
Impact | |
An arbitrary OS command may be executed by an attacker via specially crafted config files. | |
Solution | |
[Update the firmware] | |
Vendor Information | |
NIPPON TELEGRAPH AND TELEPHONE WEST CORPORATION | |
CWE (What is CWE?) | |
| |
CVE (What is CVE?) | |
| |
References | |
| |
Revision History | |
|
Date Public | 2022/03/22 |
Date First Published | 2022/03/23 |
Date Last Updated | 2022/03/23 |