CVE-2023-34215

Name of the Vulnerable Software and Affected Versions TN-5900 Series firmware versions prior to v3.3

Description The issue stems from insufficient input validation and improper authentication in the certification-generation function. This could potentially allow malicious users to execute remote code on affected devices. The vulnerability is related to errors in processing input data in the certification-generation function.

Recommendations For TN-5900 Series firmware versions prior to v3.3, update to a version later than v3.3 to resolve the issue. As a temporary workaround, consider restricting access to the certification-generation function until a patch is available. Avoid using the certification-generation function with untrusted input until the issue is resolved.