CVE-2023-30764 — CRITICAL (9.8)

Q: How severe is CVE-2023-30764?

CVE-2023-30764 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.

Q: Is there a patch for CVE-2023-30764?

Check the references section above for vendor advisories and patch information. Affected products include: Kbdevice Kb-Ahr04D Firmware, Kbdevice Kb-Ahr04D, Kbdevice Kb-Ahr08D Firmware, Kbdevice Kb-Ahr08D, Kbdevice Kb-Ahr16D Firmware.

Vulnerability Description

OS command injection vulnerability exists in KB-AHR series and KB-IRIP series. If this vulnerability is exploited, an arbitrary OS command may be executed on the product or the device settings may be altered. Affected products and versions are as follows: KB-AHR04D versions prior to 91110.1.101106.78, KB-AHR08D versions prior to 91210.1.101106.78, KB-AHR16D versions prior to 91310.1.101106.78, KB-IRIP04A versions prior to 95110.1.100290.78A, KB-IRIP08A versions prior to 95210.1.100290.78A, and KB-IRIP16A versions prior to 95310.1.100290.78A.

CVSS Score

9.8

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Kbdevice	Kb-Ahr04D Firmware	< 91110.1.101106.78
Kbdevice	Kb-Ahr04D	-
Kbdevice	Kb-Ahr08D Firmware	< 91210.1.101106.78
Kbdevice	Kb-Ahr08D	-
Kbdevice	Kb-Ahr16D Firmware	< 91310.1.101106.78
Kbdevice	Kb-Ahr16D	-
Kbdevice	Kb-Irip04A Firmware	< 95110.1.100290.78a
Kbdevice	Kb-Irip04A	-
Kbdevice	Kb-Irip08A Firmware	< 95210.1.100290.78a
Kbdevice	Kb-Irip08A	-
Kbdevice	Kb-Irip16A Firmware	< 95310.1.100290.78a
Kbdevice	Kb-Irip16A	-

Related Weaknesses (CWE)

CWE-78

References

https://jvn.jp/en/vu/JVNVU90812349/Third Party Advisory
https://www.kbdevice.com/news/%e3%83%ac%e3%82%b3%e3%83%bc%e3%83%80%e3%83%bc%e3%8MitigationVendor Advisory
https://jvn.jp/en/vu/JVNVU90812349/Third Party Advisory
https://www.kbdevice.com/news/%e3%83%ac%e3%82%b3%e3%83%bc%e3%83%80%e3%83%bc%e3%8MitigationVendor Advisory

FAQ

What is CVE-2023-30764?

CVE-2023-30764 is a vulnerability with a CVSS score of 9.8 (CRITICAL). OS command injection vulnerability exists in KB-AHR series and KB-IRIP series. If this vulnerability is exploited, an arbitrary OS command may be executed on the product or the device settings may be ...

How severe is CVE-2023-30764?

CVE-2023-30764 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.

Is there a patch for CVE-2023-30764?

Check the references section above for vendor advisories and patch information. Affected products include: Kbdevice Kb-Ahr04D Firmware, Kbdevice Kb-Ahr04D, Kbdevice Kb-Ahr08D Firmware, Kbdevice Kb-Ahr08D, Kbdevice Kb-Ahr16D Firmware.