CVE-2023-46681

Published: Dec 26, 2023

Modified: Aug 2, 2024

PUBLISHED

Description

Improper neutralization of argument delimiters in a command ('Argument Injection') vulnerability in VR-S1000 firmware Ver. 2.37 and earlier allows an authenticated attacker who can access to the product's command line interface to execute an arbitrary command.

Vendor	Product	Versions
BUFFALO INC.	VR-S1000	affected `firmware Ver. 2.37 and earlier`

References

https://www.buffalo.jp/news/detail/20231225-01.html

https://jvn.jp/en/jp/JVN23771490/

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2023-46681

Description

Affected Products

References