Daiki Ichinose

**Nome do software vulnerável e versões afetadas: Aplicativo InBody para iOS em versões anteriores à 2.3.30 Aplicativo InBody para Android em versões anteriores à 2.2.90(510) Descrição: O problema pode levar à divulgação de informações quando o aplicativo InBody é usado com o analisador de composição corporal InBody Dial. Isso poderia permitir que um invasor que se conectasse ao InBody Dial usando o aplicativo InBody obtivesse os resultados das medições da vítima. Recomendações: Para o aplicativo InBody para iOS em versões anteriores à 2.3.30, atualize para a versão 2.3.30 ou posterior. Para o aplicativo InBody para Android em versões anteriores à 2.2.90(510), atualize para a versão 2.2.90(510) ou posterior.

**Name of the Vulnerable Software and Affected Versions** Toshiba Home gateway HEM-GW16A versions 1.2.9 and earlier Toshiba Home gateway HEM-GW26A versions 1.2.9 and earlier **Description** The issue allows an attacker on the same network segment to bypass access restrictions, potentially accessing information and files stored on the affected device. **Recommendations** For Toshiba Home gateway HEM-GW16A versions 1.2.9 and earlier, update to a version later than 1.2.9 to resolve the issue. For Toshiba Home gateway HEM-GW26A versions 1.2.9 and earlier, update to a version later than 1.2.9 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** I-O DATA network camera products TS-WRLP versions 1.09.04 and earlier I-O DATA network camera products TS-WRLA versions 1.09.04 and earlier I-O DATA network camera products TS-WRLP/E versions 1.09.04 and earlier **Description** The issue allows an attacker on the same network segment to bypass access restrictions, potentially leading to the execution of arbitrary OS commands or code, as well as information leakage or alteration, including credentials. **Recommendations** For I-O DATA network camera products TS-WRLP versions 1.09.04 and earlier, update the firmware to a version later than 1.09.04. For I-O DATA network camera products TS-WRLA versions 1.09.04 and earlier, update the firmware to a version later than 1.09.04. For I-O DATA network camera products TS-WRLP/E versions 1.09.04 and earlier, update the firmware to a version later than 1.09.04.

**Name of the Vulnerable Software and Affected Versions** I-O DATA network camera products TS-WRLP versions 1.09.04 and earlier I-O DATA network camera products TS-WRLA versions 1.09.04 and earlier I-O DATA network camera products TS-WRLP/E versions 1.09.04 and earlier **Description** The issue allows an attacker on the same network segment to add malicious files on the device and execute arbitrary code. **Recommendations** For TS-WRLP versions 1.09.04 and earlier, update to a version later than 1.09.04. For TS-WRLA versions 1.09.04 and earlier, update to a version later than 1.09.04. For TS-WRLP/E versions 1.09.04 and earlier, update to a version later than 1.09.04.

**Name of the Vulnerable Software and Affected Versions** I-O DATA network camera products TS-WRLP versions 1.09.04 and earlier I-O DATA network camera products TS-WRLA versions 1.09.04 and earlier I-O DATA network camera products TS-WRLP/E versions 1.09.04 and earlier **Description** The issue concerns the use of hardcoded credentials in the affected products, potentially allowing a remote authenticated attacker to execute arbitrary OS commands on the device. **Recommendations** For TS-WRLP versions 1.09.04 and earlier, update to a version later than 1.09.04 to resolve the issue. For TS-WRLA versions 1.09.04 and earlier, update to a version later than 1.09.04 to resolve the issue. For TS-WRLP/E versions 1.09.04 and earlier, update to a version later than 1.09.04 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** MP Form Mail CGI eCommerce Edition versions 2.0.13 and earlier **Description** The issue allows remote attackers to execute arbitrary OS commands. **Recommendations** For MP Form Mail CGI eCommerce Edition versions 2.0.13 and earlier, update to a version later than 2.0.13 to resolve the issue.