CVE-2018-0512

Devices with IP address setting tool "MagicalFinder" provided by I-O DATA DEVICE, INC. allow authenticated attackers to execute arbitrary OS commands via unspecified vectors.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:iodata:hdl-xr_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:hdl-xr:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:iodata:hdl-xrw_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:hdl-xrw:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:iodata:hdl-xr2u_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:hdl-xr2u:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:iodata:hdl-xr2uw_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:hdl-xr2uw:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:iodata:hdl-xv_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:hdl-xv:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:iodata:hdl-xvw_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:hdl-xvw:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
cpe:2.3:o:iodata:hdl-gt_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:hdl-gt:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND
cpe:2.3:o:iodata:hdl-gtr_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:hdl-gtr:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND
cpe:2.3:o:iodata:hdl-a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:hdl-a:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND
cpe:2.3:o:iodata:hdl-ah_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:hdl-ah:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND
cpe:2.3:o:iodata:hdl2-a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:hdl2-a:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND
cpe:2.3:o:iodata:hdl2-ah_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:hdl2-ah:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND
cpe:2.3:o:iodata:hdl-t_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:hdl-t:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND
cpe:2.3:o:iodata:hls-c_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:hls-c:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND
cpe:2.3:o:iodata:hvl-a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:hvl-a:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND
cpe:2.3:o:iodata:hvl-at_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:hvl-at:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND
cpe:2.3:o:iodata:hvl-ata_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:hvl-ata:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND
cpe:2.3:o:iodata:hvl-s_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:hvl-s:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND
cpe:2.3:o:iodata:hfas1_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:hfas1:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND
cpe:2.3:o:iodata:whg-napg_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:whg-napg:-:*:*:*:*:*:*:*

Configuration 21 (hide)

AND
cpe:2.3:o:iodata:whg-napga_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:whg-napga:-:*:*:*:*:*:*:*

Configuration 22 (hide)

AND
cpe:2.3:o:iodata:whg-napgal_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:whg-napgal:-:*:*:*:*:*:*:*

Configuration 23 (hide)

AND
cpe:2.3:o:iodata:whg-ac1750a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:whg-ac1750a:-:*:*:*:*:*:*:*

Configuration 24 (hide)

AND
cpe:2.3:o:iodata:whg-ac1750_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:whg-ac1750:-:*:*:*:*:*:*:*

Configuration 25 (hide)

AND
cpe:2.3:o:iodata:whg-ac1750al_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:whg-ac1750al:-:*:*:*:*:*:*:*

Configuration 26 (hide)

AND
cpe:2.3:o:iodata:wn-ax1167gr_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:wn-ax1167gr:-:*:*:*:*:*:*:*

Configuration 27 (hide)

AND
cpe:2.3:o:iodata:wn-gx300gr_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:wn-gx300gr:-:*:*:*:*:*:*:*

Configuration 28 (hide)

AND
cpe:2.3:o:iodata:wnpr2600g_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:wnpr2600g:-:*:*:*:*:*:*:*

Configuration 29 (hide)

AND
cpe:2.3:o:iodata:wnpr1750g_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:wnpr1750g:-:*:*:*:*:*:*:*

Configuration 30 (hide)

AND
cpe:2.3:o:iodata:wnpr1167g_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:wnpr1167g:-:*:*:*:*:*:*:*

Configuration 31 (hide)

AND
cpe:2.3:o:iodata:wnpr1167f_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:wnpr1167f:-:*:*:*:*:*:*:*

Configuration 32 (hide)

AND
cpe:2.3:o:iodata:wn-ag750dgr_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:wn-ag750dgr:-:*:*:*:*:*:*:*

Configuration 33 (hide)

AND
cpe:2.3:o:iodata:wn-g300r_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:wn-g300r:-:*:*:*:*:*:*:*

Configuration 34 (hide)

AND
cpe:2.3:o:iodata:wn-g300r3_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:wn-g300r3:-:*:*:*:*:*:*:*

Configuration 35 (hide)

AND
cpe:2.3:o:iodata:wn-ag300dgr_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:wn-ag300dgr:-:*:*:*:*:*:*:*

Configuration 36 (hide)

AND
cpe:2.3:o:iodata:wn-ac1600dgr_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:wn-ac1600dgr:-:*:*:*:*:*:*:*

Configuration 37 (hide)

AND
cpe:2.3:o:iodata:wn-ac1167dgr_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:wn-ac1167dgr:-:*:*:*:*:*:*:*

Configuration 38 (hide)

AND
cpe:2.3:o:iodata:wn-g300ex_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:wn-g300ex:-:*:*:*:*:*:*:*

Configuration 39 (hide)

AND
cpe:2.3:o:iodata:wn-ac1300ex_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:wn-ac1300ex:-:*:*:*:*:*:*:*

Configuration 40 (hide)

AND
cpe:2.3:o:iodata:wn-ac583trk_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:wn-ac583trk:-:*:*:*:*:*:*:*

Configuration 41 (hide)

AND
cpe:2.3:o:iodata:wn-ac583rk_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:wn-ac583rk:-:*:*:*:*:*:*:*

Configuration 42 (hide)

AND
cpe:2.3:o:iodata:wn-g300sr_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:wn-g300sr:-:*:*:*:*:*:*:*

Configuration 43 (hide)

AND
cpe:2.3:o:iodata:bx-vp1_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:bx-vp1:-:*:*:*:*:*:*:*

Configuration 44 (hide)

AND
cpe:2.3:o:iodata:gv-ntx1_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:gv-ntx1:-:*:*:*:*:*:*:*

Configuration 45 (hide)

AND
cpe:2.3:o:iodata:gv-ntx2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:gv-ntx2:-:*:*:*:*:*:*:*

History

21 Nov 2024, 03:38

Type Values Removed Values Added
References () http://www.iodata.jp/support/information/2018/magicalfinder/ - Vendor Advisory () http://www.iodata.jp/support/information/2018/magicalfinder/ - Vendor Advisory
References () https://jvn.jp/en/jp/JVN36048131/index.html - Third Party Advisory, VDB Entry () https://jvn.jp/en/jp/JVN36048131/index.html - Third Party Advisory, VDB Entry

Information

Published : 2018-02-08 14:29

Updated : 2024-11-21 03:38


NVD link : CVE-2018-0512

Mitre link : CVE-2018-0512

CVE.ORG link : CVE-2018-0512


JSON object : View

Products Affected

iodata

  • wn-g300r3
  • gv-ntx1
  • hdl-xr_firmware
  • wn-ac583rk
  • whg-napga
  • hdl-gt_firmware
  • hdl-gtr
  • gv-ntx1_firmware
  • hdl-gtr_firmware
  • wn-ac1300ex
  • wnpr1750g
  • wn-ax1167gr_firmware
  • hdl2-ah
  • wn-g300r
  • wnpr1167f_firmware
  • hdl2-a_firmware
  • whg-ac1750a_firmware
  • wn-ag750dgr
  • hdl-xv
  • hdl-ah
  • hdl-xvw
  • whg-ac1750al
  • hls-c
  • wn-ax1167gr
  • wn-g300r3_firmware
  • wn-ac1300ex_firmware
  • wn-g300sr
  • hdl-xv_firmware
  • hvl-s
  • hdl-xrw_firmware
  • wn-ag300dgr
  • hvl-a_firmware
  • hvl-ata
  • hls-c_firmware
  • wnpr2600g_firmware
  • hdl-xr2u_firmware
  • wnpr1750g_firmware
  • hfas1_firmware
  • whg-ac1750al_firmware
  • wn-gx300gr
  • hvl-a
  • wn-ac583trk
  • hdl2-ah_firmware
  • wn-ac583rk_firmware
  • whg-napg
  • bx-vp1
  • wnpr2600g
  • wn-ac1600dgr
  • hdl-xr2uw_firmware
  • wn-g300ex_firmware
  • hvl-at_firmware
  • hdl-xvw_firmware
  • hdl-xrw
  • hdl-a
  • hdl-a_firmware
  • gv-ntx2_firmware
  • hvl-ata_firmware
  • hdl2-a
  • wnpr1167g_firmware
  • wn-ac1167dgr_firmware
  • hdl-ah_firmware
  • hvl-s_firmware
  • hvl-at
  • whg-napga_firmware
  • hdl-gt
  • wnpr1167f
  • wn-ac1600dgr_firmware
  • hdl-xr2uw
  • wn-g300ex
  • hdl-t_firmware
  • whg-napgal
  • wnpr1167g
  • hdl-xr
  • whg-ac1750_firmware
  • wn-gx300gr_firmware
  • hfas1
  • wn-ag300dgr_firmware
  • wn-ag750dgr_firmware
  • whg-ac1750a
  • wn-ac583trk_firmware
  • wn-g300r_firmware
  • whg-napgal_firmware
  • wn-g300sr_firmware
  • hdl-xr2u
  • hdl-t
  • whg-napg_firmware
  • whg-ac1750
  • gv-ntx2
  • bx-vp1_firmware
  • wn-ac1167dgr
CWE
CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')