CVE-2022-29516 — CRITICAL (9.8)

Q: How severe is CVE-2022-29516?

CVE-2022-29516 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.

Q: Is there a patch for CVE-2022-29516?

Check the references section above for vendor advisories and patch information. Affected products include: Fujitsu Ipcom Ex2 Nw 1100 Firmware, Fujitsu Ipcom Ex2 Nw 1100, Fujitsu Ipcom Ex2 Nw 3500 Firmware, Fujitsu Ipcom Ex2 Nw 3500, Fujitsu Ipcom Ex2 Nw 3200 Firmware.

Vulnerability Description

The web console of FUJITSU Network IPCOM series (IPCOM EX2 IN(3200, 3500), IPCOM EX2 LB(1100, 3200, 3500), IPCOM EX2 SC(1100, 3200, 3500), IPCOM EX2 NW(1100, 3200, 3500), IPCOM EX2 DC, IPCOM EX2 DC, IPCOM EX IN(2300, 2500, 2700), IPCOM EX LB(1100, 1300, 2300, 2500, 2700), IPCOM EX SC(1100, 1300, 2300, 2500, 2700), and IPCOM EX NW(1100, 1300, 2300, 2500, 2700)) allows a remote attacker to execute an arbitrary OS command via unspecified vectors.

CVSS Score

9.8

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Fujitsu	Ipcom Ex2 Nw 1100 Firmware	< v01l05_nf0501
Fujitsu	Ipcom Ex2 Nw 1100	-
Fujitsu	Ipcom Ex2 Nw 3500 Firmware	< v01l05_nf0501
Fujitsu	Ipcom Ex2 Nw 3500	-
Fujitsu	Ipcom Ex2 Nw 3200 Firmware	< v01l05_nf0501
Fujitsu	Ipcom Ex2 Nw 3200	-
Fujitsu	Ipcom Ex2 Sc 1100 Firmware	< v01l05_nf0501
Fujitsu	Ipcom Ex2 Sc 1100	-
Fujitsu	Ipcom Ex2 Sc 3500 Firmware	< v01l05_nf0501
Fujitsu	Ipcom Ex2 Sc 3500	-
Fujitsu	Ipcom Ex2 Sc 3200 Firmware	< v01l05_nf0501
Fujitsu	Ipcom Ex2 Sc 3200	-
Fujitsu	Ipcom Ex2 Lb 1100 Firmware	< v01l05_nf0501
Fujitsu	Ipcom Ex2 Lb 1100	-
Fujitsu	Ipcom Ex2 Lb 3500 Firmware	< v01l05_nf0501
Fujitsu	Ipcom Ex2 Lb 3500	-
Fujitsu	Ipcom Ex2 Lb 3200 Firmware	< v01l05_nf0501
Fujitsu	Ipcom Ex2 Lb 3200	-
Fujitsu	Ipcom Ex2 In 1100 Firmware	< v01l05_nf0501
Fujitsu	Ipcom Ex2 In 1100	-

Related Weaknesses (CWE)

CWE-78

References

https://jvn.jp/en/jp/JVN96561229/index.htmlThird Party Advisory
https://www.fujitsu.com/jp/products/network/support/2022/ipcom-01/Vendor Advisory
https://jvn.jp/en/jp/JVN96561229/index.htmlThird Party Advisory
https://www.fujitsu.com/jp/products/network/support/2022/ipcom-01/Vendor Advisory

FAQ

What is CVE-2022-29516?

CVE-2022-29516 is a vulnerability with a CVSS score of 9.8 (CRITICAL). The web console of FUJITSU Network IPCOM series (IPCOM EX2 IN(3200, 3500), IPCOM EX2 LB(1100, 3200, 3500), IPCOM EX2 SC(1100, 3200, 3500), IPCOM EX2 NW(1100, 3200, 3500), IPCOM EX2 DC, IPCOM EX2 DC, I...

How severe is CVE-2022-29516?

CVE-2022-29516 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.

Is there a patch for CVE-2022-29516?

Check the references section above for vendor advisories and patch information. Affected products include: Fujitsu Ipcom Ex2 Nw 1100 Firmware, Fujitsu Ipcom Ex2 Nw 1100, Fujitsu Ipcom Ex2 Nw 3500 Firmware, Fujitsu Ipcom Ex2 Nw 3500, Fujitsu Ipcom Ex2 Nw 3200 Firmware.