{"dataType":"CVE_RECORD","dataVersion":"5.1","cveMetadata":{"cveId":"CVE-2023-3741","assignerOrgId":"f2760a35-e0d8-4637-ac4c-cc1a2de3e282","state":"PUBLISHED","assignerShortName":"NEC","dateReserved":"2023-07-18T00:45:34.513Z","datePublished":"2023-11-30T00:55:50.692Z","dateUpdated":"2024-12-02T19:03:40.069Z"},"containers":{"cna":{"affected":[{"product":"ITK-6DGS-1(BK) TEL","vendor":"NEC Platforms, Ltd","versions":[{"status":"affected","version":"all versions"}]},{"product":"ITK-32LCGS-1(BK) TEL","vendor":"NEC Platforms, Ltd","versions":[{"status":"affected","version":"all versions"}]},{"product":"ITK-32TCGS-1(BK) TEL","vendor":"NEC Platforms, Ltd","versions":[{"status":"affected","version":"all versions"}]},{"product":"ITK-6D-1(BK)TEL","vendor":"NEC Platforms, Ltd","versions":[{"status":"affected","version":"all versions"}]},{"product":"ITK-12D-1(BK)TEL","vendor":"NEC Platforms, Ltd","versions":[{"status":"affected","version":"all versions"}]},{"product":"ITK-8LCX-1(BK)TEL","vendor":"NEC Platforms, Ltd","versions":[{"status":"affected","version":"all versions"}]},{"product":"ITK-8TCGX-1(BK)TEL","vendor":"NEC Platforms, Ltd","versions":[{"status":"affected","version":"all versions"}]},{"product":"ITK-6DGS-1A(BK) TEL","vendor":"NEC Platforms, Ltd","versions":[{"status":"affected","version":"all versions"}]},{"product":"ITK-32LCGS-1A(BK) TEL","vendor":"NEC Platforms, Ltd","versions":[{"status":"affected","version":"all versions"}]},{"product":"ITK-32TCGS-1A(BK) TEL","vendor":"NEC Platforms, Ltd","versions":[{"status":"affected","version":"all versions"}]},{"product":"ITK-6DGS-1P(BK) TEL","vendor":"NEC Platforms, Ltd","versions":[{"status":"affected","version":"all versions"}]},{"product":"ITK-32LCGS-1P(BK) TEL","vendor":"NEC Platforms, Ltd","versions":[{"status":"affected","version":"all versions"}]},{"product":"ITK-32TCGS-1P(BK) TEL","vendor":"NEC Platforms, Ltd","versions":[{"status":"affected","version":"all versions"}]},{"product":"ITK-6D-1P(BK)TEL","vendor":"NEC Platforms, Ltd","versions":[{"status":"affected","version":"all versions"}]},{"product":"ITK-12D-1P(BK)TEL","vendor":"NEC Platforms, Ltd","versions":[{"status":"affected","version":"all versions"}]},{"product":"ITK-6DG-1P(BK)TEL","vendor":"NEC Platforms, Ltd","versions":[{"status":"affected","version":"all versions"}]},{"product":"ITK-12DG-1P(BK)TEL","vendor":"NEC Platforms, Ltd","versions":[{"status":"affected","version":"all versions"}]},{"product":"ITK-8LCX-1P(BK)TEL","vendor":"NEC Platforms, Ltd","versions":[{"status":"affected","version":"all versions"}]},{"product":"ITK-8LCG-1P(BK)TEL","vendor":"NEC Platforms, Ltd","versions":[{"status":"affected","version":"all versions"}]},{"product":"ITK-32LCG-1P(BK)TEL","vendor":"NEC Platforms, Ltd","versions":[{"status":"affected","version":"all versions"}]},{"product":"ITK-8TCGX-1P(BK)TEL","vendor":"NEC Platforms, Ltd","versions":[{"status":"affected","version":"all versions"}]},{"product":"ITK-32TCG-1P(BK)TEL","vendor":"NEC Platforms, Ltd","versions":[{"status":"affected","version":"all versions"}]}],"credits":[{"lang":"en","type":"reporter","user":"00000000-0000-4000-9000-000000000000","value":"Mr. Gianluca Altomani."}],"descriptions":[{"lang":"en","supportingMedia":[{"base64":false,"type":"text/html","value":"<p>An OS Command injection vulnerability in NEC Platforms DT900 and DT900S Series all versions allows an attacker to execute any command on the device.</p>"}],"value":"An OS Command injection vulnerability in NEC Platforms DT900 and DT900S Series all versions allows an attacker to execute any command on the device.\n\n"}],"problemTypes":[{"descriptions":[{"cweId":"CWE-78","description":"CWE-78: Improper Neutralization of Special Elements used in an OS Command","lang":"en","type":"CWE"}]}],"providerMetadata":{"orgId":"f2760a35-e0d8-4637-ac4c-cc1a2de3e282","shortName":"NEC","dateUpdated":"2023-11-30T00:55:52.643Z"},"references":[{"url":"https://https://jpn.nec.com/security-info/secinfo/nv23-011_en.html"}],"source":{"discovery":"EXTERNAL"},"x_generator":{"engine":"Vulnogram 0.1.0-dev"}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-02T07:01:57.513Z"},"title":"CVE Program Container","references":[{"url":"https://https://jpn.nec.com/security-info/secinfo/nv23-011_en.html","tags":["x_transferred"]}]},{"metrics":[{"other":{"type":"ssvc","content":{"timestamp":"2023-12-04T20:02:20.376614Z","id":"CVE-2023-3741","options":[{"Exploitation":"none"},{"Automatable":"yes"},{"Technical Impact":"total"}],"role":"CISA Coordinator","version":"2.0.3"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2024-12-02T19:03:40.069Z"}}]}}