Chunghwa Telecom NOKIA G-040W-Q - Command Injection
CVE-2023-41352

7.2HIGH

Key Information:

Vendor: Chunghwa Telecom
Status: Nokia G-040w-q
Vendor: CVE Published:; 3 November 2023

🔔 Create Chunghwa Telecom Vulnerability Alert

What is CVE-2023-41352?

The NOKIA G-040W-Q device from Chunghwa Telecom contains a vulnerability due to insufficient filtering of user input. This flaw can be exploited by remote attackers possessing administrator privileges, allowing them to execute arbitrary commands on the device. Such exploitation can lead to system disruption and the potential termination of critical services. It is essential for users and system administrators to implement measures to secure their devices against this vulnerability.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

NOKIA G-040W-Q G040WQR201207

References

https://www.twcert.org.tw/tw/cp-132-7502-287ec-1.html

CVSS V3.1

Score:

7.2

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 3, 2023
Vulnerability Reserved
Aug 29, 2023

JSON