PT-2023-22962 · Kb-Ahr08D+3 · Kb-Ahr08D+5
Hiromu Kubiura
+3
·
Published
2023-06-13
·
Updated
2025-01-03
·
CVE-2023-30762
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
KB-AHR04D versions prior to 91110.1.101106.78
KB-AHR08D versions prior to 91210.1.101106.78
KB-AHR16D versions prior to 91310.1.101106.78
KB-IRIP04A versions prior to 95110.1.100290.78A
KB-IRIP08A versions prior to 95210.1.100290.78A
KB-IRIP16A versions prior to 95310.1.100290.78A
Description
An improper authentication issue exists in the KB-AHR series and KB-IRIP series, allowing for the potential execution of arbitrary OS commands or alteration of device settings if exploited.
Recommendations
For KB-AHR04D versions prior to 91110.1.101106.78, update to a version after 91110.1.101106.78.
For KB-AHR08D versions prior to 91210.1.101106.78, update to a version after 91210.1.101106.78.
For KB-AHR16D versions prior to 91310.1.101106.78, update to a version after 91310.1.101106.78.
For KB-IRIP04A versions prior to 95110.1.100290.78A, update to a version after 95110.1.100290.78A.
For KB-IRIP08A versions prior to 95210.1.100290.78A, update to a version after 95210.1.100290.78A.
For KB-IRIP16A versions prior to 95310.1.100290.78A, update to a version after 95310.1.100290.78A.
Fix
Missing Authentication
Improper Authentication
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Kb-Ahr04D
Kb-Ahr08D
Kb-Ahr16D
Kb-Irip04A
Kb-Irip08A
Kb-Irip16A