Unrated severityNVD Advisory· Published Aug 23, 2023· Updated Aug 2, 2024
CVE-2023-40144
CVE-2023-40144
Description
OS command injection vulnerability in the CBC products allows a remote authenticated attacker to execute an arbitrary OS command on the device or alter its settings. As for the affected products/versions, see the detailed information provided by the vendor. Note that NR4H, NR8H, NR16H series and DR-16F, DR-8F, DR-4F, DR-16H, DR-8H, DR-4H, DR-4M41 series are no longer supported, therefore updates for those products are not provided.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
6- CBC Co.,Ltd./DR-16F, DR-8F, DR-4F, DR-16H, DR-8H, DR-4H, DR-4M41 seriesv5Range: firmware all versions
- CBC Co.,Ltd./DR-16M, DR-8M, DR-4M51 seriesv5Range: firmware all versions
- CBC Co.,Ltd./NR-4F, NR-8F, NR-16F seriesv5Range: firmware all versions
- CBC Co.,Ltd./NR4H, NR8H, NR16H seriesv5Range: firmware all versions
- CBC Co.,Ltd./NR-4M, NR-8M, NR-16M seriesv5Range: firmware all versions
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.