Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

CVE-2023-38585

UNKNOWN
Published 2023-08-23T02:51:09.660Z
Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2023-38585. We'll provide specific mitigation strategies based on your environment and risk profile.

No CVSS data available

Description

Improper authentication vulnerability in the CBC products allows a remote authenticated attacker to execute an arbitrary OS command on the device or alter its settings. As for the affected products/versions, see the detailed information provided by the vendor. Note that NR4H, NR8H, NR16H series and DR-16F, DR-8F, DR-4F, DR-16H, DR-8H, DR-4H, DR-4M41 series are no longer supported, therefore updates for those products are not provided.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

CBC Co.,Ltd.

NR4H, NR8H, NR16H series

Affected Versions:

firmware all versions
CBC Co.,Ltd.

DR-16F, DR-8F, DR-4F, DR-16H, DR-8H, DR-4H, DR-4M41 series

Affected Versions:

firmware all versions
CBC Co.,Ltd.

NR-4M, NR-8M, NR-16M series

Affected Versions:

firmware all versions
CBC Co.,Ltd.

NR-4F, NR-8F, NR-16F series

Affected Versions:

firmware all versions
CBC Co.,Ltd.

DR-16M, DR-8M, DR-4M51 series

Affected Versions:

firmware all versions

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

⚠ Unreviewed HIGH

GHSA-j3px-wrmc-2h8r

Advisory Details

Improper authentication vulnerability in the CBC products allows a remote authenticated attacker to execute an arbitrary OS command on the device or alter its settings. As for the affected products/versions, see the detailed information provided by the vendor. Note that NR4H, NR8H, NR16H series and DR-16F, DR-8F, DR-4F, DR-16H, DR-8H, DR-4H, DR-4M41 series are no longer supported, therefore updates for those products are not provided.

CVSS Scoring

CVSS Score

7.5

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2023-38585
WEB https://download.ganzsecurity.pl
WEB https://ganzsecurity.com/release/1578/digimasterpixelmaster-security-notice
WEB https://jvn.jp/en/vu/JVNVU92545432

Advisory provided by GitHub Security Advisory Database. Published: August 23, 2023, Modified: April 4, 2024

References

https://download.ganzsecurity.pl/
https://ganzsecurity.com/release/1578/digimasterpixelmaster-security-notice
https://jvn.jp/en/vu/JVNVU92545432/
Published: 2023-08-23T02:51:09.660Z
Last Modified: 2024-08-02T17:46:55.839Z
Copied to clipboard!