Michael Flanders

**Name of the Vulnerable Software and Affected Versions** NETGEAR AC1200 R6220 Firmware version 1.1.0.86 **Description** This issue allows network-adjacent attackers to bypass authentication on affected installations. The flaw exists within the processing of path strings, specifically by inserting a null byte into the path, which enables the user to skip most authentication checks. An attacker can leverage this to bypass authentication on the system. **Recommendations** For NETGEAR AC1200 R6220 Firmware version 1.1.0.86, consider restricting access to the mini httpd service until a patch is available. As a temporary workaround, avoid using path strings that can be manipulated by inserting null bytes. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Fuji Electric Alpha5 Smart Loader versions 3.7 and prior **Description** The issue arises because the device does not check the length or size of a project file before copying its entire contents to a heap-based buffer. **Recommendations** For Fuji Electric Alpha5 Smart Loader versions 3.7 and prior, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Fuji Electric FRENIC LOADER version 3.3 Fuji Electric FRENIC LOADER version 7.3.4.1a of FRENIC-Mini (C1) Fuji Electric FRENIC LOADER version 7.3.4.1a of FRENIC-Mini (C2) Fuji Electric FRENIC LOADER version 7.3.4.1a of FRENIC-Eco Fuji Electric FRENIC LOADER version 7.3.4.1a of FRENIC-Multi Fuji Electric FRENIC LOADER version 7.3.4.1a of FRENIC-MEGA Fuji Electric FRENIC LOADER version 7.3.4.1a of FRENIC-Ace **Description** The program does not properly parse FNC files, which may allow for information disclosure. **Recommendations** For Fuji Electric FRENIC LOADER version 3.3, update to a version that properly parses FNC files to prevent information disclosure. For Fuji Electric FRENIC LOADER version 7.3.4.1a of FRENIC-Mini (C1), update to a version that properly parses FNC files to prevent information disclosure. For Fuji Electric FRENIC LOADER version 7.3.4.1a of FRENIC-Mini (C2), update to a version that properly parses FNC files to prevent information disclosure. For Fuji Electric FRENIC LOADER version 7.3.4.1a of FRENIC-Eco, update to a version that properly parses FNC files to prevent information disclosure. For Fuji Electric FRENIC LOADER version 7.3.4.1a of FRENIC-Multi, update to a version that properly parses FNC files to prevent information disclosure. For Fuji Electric FRENIC LOADER version 7.3.4.1a of FRENIC-MEGA, update to a version that properly parses FNC files to prevent information disclosure. For Fuji Electric FRENIC LOADER version 7.3.4.1a of FRENIC-Ace, update to a version that properly parses FNC files to prevent information disclosure.

**Name of the Vulnerable Software and Affected Versions** Fuji Electric FRENIC LOADER version 3.3 Fuji Electric FRENIC LOADER version 7.3.4.1a of FRENIC-Mini (C1) Fuji Electric FRENIC LOADER version 7.3.4.1a of FRENIC-Mini (C2) Fuji Electric FRENIC LOADER version 7.3.4.1a of FRENIC-Eco Fuji Electric FRENIC LOADER version 7.3.4.1a of FRENIC-Multi Fuji Electric FRENIC LOADER version 7.3.4.1a of FRENIC-MEGA Fuji Electric FRENIC LOADER version 7.3.4.1a of FRENIC-Ace **Description** The issue arises from the program's failure to properly check user-supplied comments, potentially allowing for arbitrary remote code execution. **Recommendations** For Fuji Electric FRENIC LOADER version 3.3, update to a version that properly checks user-supplied comments to prevent arbitrary remote code execution. For Fuji Electric FRENIC LOADER version 7.3.4.1a of FRENIC-Mini (C1), restrict user input to prevent exploitation until a patch is available. For Fuji Electric FRENIC LOADER version 7.3.4.1a of FRENIC-Mini (C2), restrict user input to prevent exploitation until a patch is available. For Fuji Electric FRENIC LOADER version 7.3.4.1a of FRENIC-Eco, restrict user input to prevent exploitation until a patch is available. For Fuji Electric FRENIC LOADER version 7.3.4.1a of FRENIC-Multi, restrict user input to prevent exploitation until a patch is available. For Fuji Electric FRENIC LOADER version 7.3.4.1a of FRENIC-MEGA, restrict user input to prevent exploitation until a patch is available. For Fuji Electric FRENIC LOADER version 7.3.4.1a of FRENIC-Ace, restrict user input to prevent exploitation until a patch is available.

**Name of the Vulnerable Software and Affected Versions** SonicWall Global Management System (GMS) versions 8.1 and earlier **Description** A vulnerability in the lack of validation of user-supplied parameters passed to XML-RPC calls allows remote users to execute arbitrary code. **Recommendations** For versions 8.1 and earlier, update to a version later than 8.1 to resolve the issue. As a temporary workaround, consider restricting access to the XML-RPC calls to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** ABB Panel Builder 800 all versions **Description** The issue is related to improper input validation, which may allow an attacker to insert and run arbitrary code on a computer where the affected product is used. This can lead to remote code execution vulnerabilities. Various components and modules within the ABB Panel Builder 800 are affected, including those related to ModBus, TCP/IP addresses, and user settings. The vulnerability can be exploited through stack-based or heap-based buffer overflows, as well as format string vulnerabilities. **Recommendations** As a temporary workaround, consider disabling the vulnerable components or restricting access to them until a patch is available. For versions that are affected by the improper input validation vulnerability, ensure that all inputs are properly validated and sanitized to prevent arbitrary code execution. Restrict access to the `TCP IP Address` and `IPAddress` parameters in the affected modules to minimize the risk of exploitation. Avoid using the `UserSettings` and `CommandLineOptions` in the affected API endpoints until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.