Vulnerability Description
Hidden functionality vulnerability in UDR-JA1604/UDR-JA1608/UDR-JA1616 firmware versions 71x10.1.107112.43A and earlier allows a remote authenticated attacker to execute an arbitrary OS command on the device or alter the device settings.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Unimo | Udr-Ja1604 Firmware | < 71x10.1.107114.43a |
| Unimo | Udr-Ja1604 | - |
| Unimo | Udr-Ja1608 Firmware | < 71x10.1.107114.43a |
| Unimo | Udr-Ja1608 | - |
| Unimo | Udr-Ja1616 Firmware | < 71x10.1.107114.43a |
| Unimo | Udr-Ja1616 | - |
Related Weaknesses (CWE)
References
- http://www.unimo.co.jp/table_notice/index.php?act=1&resid=1666831567-004418Vendor Advisory
- https://jvn.jp/en/vu/JVNVU94514762/index.htmlThird Party Advisory
- http://www.unimo.co.jp/table_notice/index.php?act=1&resid=1666831567-004418Vendor Advisory
- https://jvn.jp/en/vu/JVNVU94514762/index.htmlThird Party Advisory
FAQ
What is CVE-2022-43464?
CVE-2022-43464 is a vulnerability with a CVSS score of 8.8 (HIGH). Hidden functionality vulnerability in UDR-JA1604/UDR-JA1608/UDR-JA1616 firmware versions 71x10.1.107112.43A and earlier allows a remote authenticated attacker to execute an arbitrary OS command on the...
How severe is CVE-2022-43464?
CVE-2022-43464 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-43464?
Check the references section above for vendor advisories and patch information. Affected products include: Unimo Udr-Ja1604 Firmware, Unimo Udr-Ja1604, Unimo Udr-Ja1608 Firmware, Unimo Udr-Ja1608, Unimo Udr-Ja1616 Firmware.