Refine your search
1 vulnerability found for GC-A24W-C(W) by JTEKT ELECTRONICS CORPORATION
jvndb-2023-000122
Vulnerability from jvndb
Published
2023-12-11 14:12
Modified
2024-04-22 16:55
Severity ?
Summary
Multiple denial-of-service (DoS) vulnerabilities in JTEKT ELECTRONICS HMI GC-A2 series
Details
HMI GC-A2 series provided by JTEKT ELECTRONICS CORPORATION contains multiple denial-of-service (DoS) vulnerabilities listed below.
<ul><li>Denial-of-service (DoS) vulnerability in FTP service (CWE-400) - CVE-2023-41963</li><li>Denial-of-service (DoS) vulnerability in commplex-link service (CWE-400) - CVE-2023-49140</li><li>Denial-of-service (DoS) vulnerability in rfe service (CWE-400) - CVE-2023-49143</li><li>Denial-of-service (DoS) vulnerability in NetBIOS service (CWE-400) - CVE-2023-49713</li></ul>
JTEKT ELECTRONICS CORPORATION reported these vulnerabilities to IPA to notify users of the solution through JVN. JPCERT/CC and JTEKT ELECTRONICS CORPORATION coordinated under the Information Security Early Warning Partnership.
References
Impacted products
| Vendor | Product | |||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2023/JVNDB-2023-000122.html",
"dc:date": "2024-04-22T16:55+09:00",
"dcterms:issued": "2023-12-11T14:12+09:00",
"dcterms:modified": "2024-04-22T16:55+09:00",
"description": "HMI GC-A2 series provided by JTEKT ELECTRONICS CORPORATION contains multiple denial-of-service (DoS) vulnerabilities listed below.\r\n\u003cul\u003e\u003cli\u003eDenial-of-service (DoS) vulnerability in FTP service (CWE-400) - CVE-2023-41963\u003c/li\u003e\u003cli\u003eDenial-of-service (DoS) vulnerability in commplex-link service (CWE-400) - CVE-2023-49140\u003c/li\u003e\u003cli\u003eDenial-of-service (DoS) vulnerability in rfe service (CWE-400) - CVE-2023-49143\u003c/li\u003e\u003cli\u003eDenial-of-service (DoS) vulnerability in NetBIOS service (CWE-400) - CVE-2023-49713\u003c/li\u003e\u003c/ul\u003e\r\nJTEKT ELECTRONICS CORPORATION reported these vulnerabilities to IPA to notify users of the solution through JVN. JPCERT/CC and JTEKT ELECTRONICS CORPORATION coordinated under the Information Security Early Warning Partnership.",
"link": "https://jvndb.jvn.jp/en/contents/2023/JVNDB-2023-000122.html",
"sec:cpe": [
{
"#text": "cpe:/o:jtekt:gc-a22w-cw_firmware",
"@product": "GC-A22W-CW",
"@vendor": "JTEKT ELECTRONICS CORPORATION",
"@version": "2.2"
},
{
"#text": "cpe:/o:jtekt:gc-a24-m_firmware",
"@product": "GC-A24-M",
"@vendor": "JTEKT ELECTRONICS CORPORATION",
"@version": "2.2"
},
{
"#text": "cpe:/o:jtekt:gc-a24w-c%28w%29_firmware",
"@product": "GC-A24W-C(W)",
"@vendor": "JTEKT ELECTRONICS CORPORATION",
"@version": "2.2"
},
{
"#text": "cpe:/o:jtekt:gc-a24_firmware",
"@product": "GC-A24",
"@vendor": "JTEKT ELECTRONICS CORPORATION",
"@version": "2.2"
},
{
"#text": "cpe:/o:jtekt:gc-a25_firmware",
"@product": "GC-A25",
"@vendor": "JTEKT ELECTRONICS CORPORATION",
"@version": "2.2"
},
{
"#text": "cpe:/o:jtekt:gc-a26-j2_firmware",
"@product": "GC-A26-J2",
"@vendor": "JTEKT ELECTRONICS CORPORATION",
"@version": "2.2"
},
{
"#text": "cpe:/o:jtekt:gc-a26w-c%28w%29_firmware",
"@product": "GC-A26W-C(W)",
"@vendor": "JTEKT ELECTRONICS CORPORATION",
"@version": "2.2"
},
{
"#text": "cpe:/o:jtekt:gc-a26_firmware",
"@product": "GC-A26",
"@vendor": "JTEKT ELECTRONICS CORPORATION",
"@version": "2.2"
},
{
"#text": "cpe:/o:jtekt:gc-a27-c_firmware",
"@product": "GC-A27-C",
"@vendor": "JTEKT ELECTRONICS CORPORATION",
"@version": "2.2"
},
{
"#text": "cpe:/o:jtekt:gc-a28-c_firmware",
"@product": "GC-A28-C",
"@vendor": "JTEKT ELECTRONICS CORPORATION",
"@version": "2.2"
}
],
"sec:cvss": [
{
"@score": "7.8",
"@severity": "High",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"@version": "2.0"
},
{
"@score": "7.5",
"@severity": "High",
"@type": "Base",
"@vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"@version": "3.0"
}
],
"sec:identifier": "JVNDB-2023-000122",
"sec:references": [
{
"#text": "https://jvn.jp/en/jp/JVN34145838/index.html",
"@id": "JVN#34145838",
"@source": "JVN"
},
{
"#text": "https://www.cve.org/CVERecord?id=CVE-2023-41963",
"@id": "CVE-2023-41963",
"@source": "CVE"
},
{
"#text": "https://www.cve.org/CVERecord?id=CVE-2023-49140",
"@id": "CVE-2023-49140",
"@source": "CVE"
},
{
"#text": "https://www.cve.org/CVERecord?id=CVE-2023-49143",
"@id": "CVE-2023-49143",
"@source": "CVE"
},
{
"#text": "https://www.cve.org/CVERecord?id=CVE-2023-49713",
"@id": "CVE-2023-49713",
"@source": "CVE"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2023-41963",
"@id": "CVE-2023-41963",
"@source": "NVD"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2023-49140",
"@id": "CVE-2023-49140",
"@source": "NVD"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2023-49143",
"@id": "CVE-2023-49143",
"@source": "NVD"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2023-49713",
"@id": "CVE-2023-49713",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-Other",
"@title": "No Mapping(CWE-Other)"
}
],
"title": "Multiple denial-of-service (DoS) vulnerabilities in JTEKT ELECTRONICS HMI GC-A2 series"
}