jvndb - jvndb-2024-009396

jvndb-2024-009396

Vulnerability from jvndb

Published

2024-09-30 12:46

Modified

2024-09-30 12:46

Severity ?

5.3 (Medium) - cvssV3_0 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Summary

SNMP service is enabled by default in Sharp NEC Display Solutions projectors

Details

Multiple projectors provided by Sharp NEC Display Solutions, Ltd. are configured with SNMP service enabled by default, therefore can be accessed by specifying SNMP community name "public" (CWE-1242 ,CVE-2024-7011). SNMP service configuration (enable/disable) cannot be changed on the management page of the projectors either. This vulnerability was directly reported to Sharp NEC Display Solutions, Ltd. by the reporter. Sharp NEC Display Solutions, Ltd. reported the case to JPCERT/CC to notify users of the solution through JVN. Reporter: JP Hofmeyr of Southern Metropolitan Cemeteries Trust

References

Type

URL

	JVN	https://jvn.jp/en/vu/JVNVU91077448/index.html
	CVE	https://www.cve.org/CVERecord?id=CVE-2024-7011
	Inclusion of Undocumented Features or Chicken Bits(CWE-1242)	https://cwe.mitre.org/data/definitions/1242.html

Impacted products

Vendor

Product

Sharp NEC Display Solutions, Ltd.

(Multiple Product)

Show details on JVN DB website

JSON

To clipboard

{
  "@rdf:about": "https://jvndb.jvn.jp/en/contents/2024/JVNDB-2024-009396.html",
  "dc:date": "2024-09-30T12:46+09:00",
  "dcterms:issued": "2024-09-30T12:46+09:00",
  "dcterms:modified": "2024-09-30T12:46+09:00",
  "description": "Multiple projectors provided by Sharp NEC Display Solutions, Ltd. are configured with SNMP service enabled by default, therefore can be accessed by specifying SNMP community name \"public\" (CWE-1242 ,CVE-2024-7011).\r\nSNMP service configuration (enable/disable) cannot be changed on the management page of the projectors either.\r\n\r\nThis vulnerability was directly reported to Sharp NEC Display Solutions, Ltd. by the reporter. Sharp NEC Display Solutions, Ltd. reported the case to JPCERT/CC to notify users of the solution through JVN.\r\nReporter: JP Hofmeyr of Southern Metropolitan Cemeteries Trust",
  "link": "https://jvndb.jvn.jp/en/contents/2024/JVNDB-2024-009396.html",
  "sec:cpe": {
    "#text": "cpe:/a:sharp-nec-displays:multiple_product",
    "@product": "(Multiple Product)",
    "@vendor": "Sharp NEC Display Solutions, Ltd.",
    "@version": "2.2"
  },
  "sec:cvss": {
    "@score": "5.3",
    "@severity": "Medium",
    "@type": "Base",
    "@vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
    "@version": "3.0"
  },
  "sec:identifier": "JVNDB-2024-009396",
  "sec:references": [
    {
      "#text": "https://jvn.jp/en/vu/JVNVU91077448/index.html",
      "@id": "JVNVU#91077448",
      "@source": "JVN"
    },
    {
      "#text": "https://www.cve.org/CVERecord?id=CVE-2024-7011",
      "@id": "CVE-2024-7011",
      "@source": "CVE"
    },
    {
      "#text": "https://cwe.mitre.org/data/definitions/1242.html",
      "@id": "CWE-1242",
      "@title": "Inclusion of Undocumented Features or Chicken Bits(CWE-1242)"
    }
  ],
  "title": "SNMP service is enabled by default in Sharp NEC Display Solutions projectors"
}

CVE-2024-7011 (GCVE-0-2024-7011)

Vulnerability from cvelistv5

Published

2024-09-27 02:45

Modified

2025-12-08 15:51

Severity ?

6.5 (Medium) - CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE

CWE-1242 - Inclusion of Undocumented Features or Chicken Bits

Summary

Sharp NEC Projectors (NP-CB4500UL, NP-CB4500WL, NP-CB4700UL, NP-P525UL, NP-P525UL+, NP-P525ULG, NP-P525ULJL, NP-P525WL, NP-P525WL+, NP-P525WLG, NP-P525WLJL, NP-CG6500UL, NP-CG6500WL, NP-CG6700UL, NP-P605UL, NP-P605UL+, NP-P605ULG, NP-P605ULJL, NP-CA4120X, NP-CA4160W, NP-CA4160X, NP-CA4200U, NP-CA4200W, NP-CA4202W, NP-CA4260X, NP-CA4300X, NP-CA4355X, NP-CD2100U, NP-CD2120X, NP-CD2300X, NP-CR2100X, NP-CR2170W, NP-CR2170X, NP-CR2200U, NP-CR2200W, NP-CR2280X, NP-CR2310X, NP-CR2350X, NP-MC302XG, NP-MC332WG, NP-MC332WJL, NP-MC342XG, NP-MC372X, NP-MC372XG, NP-MC382W, NP-MC382WG, NP-MC422XG, NP-ME342UG, NP-ME372W, NP-ME372WG, NP-ME372WJL, NP-ME382U, NP-ME382UG, NP-ME382UJL, NP-ME402X, NP-ME402XG, NP-ME402XJL, NP-CB4500XL, NP-CG6400UL, NP-CG6400WL, NP-CG6500XL, NP-PE455UL, NP-PE455ULG, NP-PE455WL, NP-PE455WLG, NP-PE505XLG, NP-CB4600U, NP-CF6600U, NP-P474U, NP-P554U, NP-P554U+, NP-P554UG, NP-P554UJL, NP-CG6600UL, NP-P547UL, NP-P547ULG, NP-P547ULJL, NP-P607UL+, NP-P627UL, NP-P627UL+, NP-P627ULG, NP-P627ULJL, NP-PV710UL-B, NP-PV710UL-B1, NP-PV710UL-W, NP-PV710UL-W+, NP-PV710UL-W1, NP-PV730UL-BJL, NP-PV730UL-WJL, NP-PV800UL-B, NP-PV800UL-B+, NP-PV800UL-B1, NP-PV800UL-BJL, NP-PV800UL-W, NP-PV800UL-W+, NP-PV800UL-W1, NP-PV800UL-WJL, NP-CA4200X, NP-CA4265X, NP-CA4300U, NP-CA4300W, NP-CA4305X, NP-CA4400X, NP-CD2125X, NP-CD2200W, NP-CD2300U, NP-CD2310X, NP-CR2105X, NP-CR2200X, NP-CR2205W, NP-CR2300U, NP-CR2300W, NP-CR2315X, NP-CR2400X, NP-MC333XG, NP-MC363XG, NP-MC393WJL, NP-MC423W, NP-MC423WG, NP-MC453X, NP-MC453X, NP-MC453XG, NP-MC453XJL, NP-ME383WG, NP-ME403U, NP-ME403UG, NP-ME403UJL, NP-ME423W, NP-ME423WG, NP-ME423WJL, NP-ME453X, NP-ME453XG, NP-CB4400USL, NP-CB4400WSL, NP-CB4510UL, NP-CB4510WL, NP-CB4510XL, NP-CB4550USL, NP-CB6700UL, NP-CG6510UL, NP-PE456USL, NP-PE456USLG, NP-PE456USLJL, NP-PE456WSLG, NP-PE506UL, NP-PE506ULG, NP-PE506ULJL, NP-PE506WL, NP-PE506WLG, NP-PE506WLJL) allows an attacker to cause a denial-of-service (DoS) condition via SNMP service.

References

URL

Tags

https://sharp-displays.jp.sharp/global/support/info/Projector_vulnerability_202408.html

Impacted products

Vendor

Product

Version

Sharp Display Solutions, Ltd.

NP-CB4500UL

Version: 0 < updated projector firmware

Sharp Display Solutions, Ltd.	NP-CB4500WL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CB4700UL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-P525UL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-P525UL+	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-P525ULG	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-P525ULJL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-P525WL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-P525WL+	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-P525WLG	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-P525WLJL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CG6500UL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CG6500WL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CG6700UL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-P605UL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-P605UL+	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-P605ULG	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-P605ULJL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CA4120X	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CA4160W	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CA4160X	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CA4200U	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CA4200W	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CA4202W	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CA4260X	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CA4300X	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CA4355X	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CD2100U	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CD2120X	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CD2300X	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CR2100X	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CR2170W	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CR2170X	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CR2200U	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CR2200W	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CR2280X	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CR2310X	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CR2350X	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-MC302XG	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-MC332WG	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-MC332WJL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-MC342XG	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-MC372X	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-MC372XG	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-MC382W	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-MC382WG	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-MC422XG	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-ME342UG	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-ME372W	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-ME372WG	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-ME372WJL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-ME382U	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-ME382UG	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-ME382UJL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-ME402X	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-ME402XG	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-ME402XJL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CB4500XL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CG6400UL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CG6400WL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CG6500XL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-PE455UL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-PE455ULG	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-PE455WL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-PE455WLG	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-PE505XLG	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CB4600U	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CF6600U	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-P474U	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-P554U	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-P554U+	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-P554UG	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-P554UJL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CG6600UL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-P547UL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-P547ULG	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-P547ULJL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-P607UL+	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-P627UL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-P627UL+	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-P627ULG	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-P627ULJL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-PV710UL-B	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-PV710UL-B1	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-PV710UL-W	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-PV710UL-W+	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-PV710UL-W1	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-PV730UL-BJL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-PV730UL-WJL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-PV800UL-B	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-PV800UL-B+	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-PV800UL-B1	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-PV800UL-BJL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-PV800UL-W	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-PV800UL-W+	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-PV800UL-W1	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-PV800UL-WJL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CA4200X	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CA4265X	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CA4300U	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CA4300W	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CA4305X	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CA4400X	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CD2125X	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CD2200W	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CD2300U	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CD2310X	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CR2105X	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CR2200X	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CR2205W	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CR2300U	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CR2300W	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CR2315X	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CR2400X	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-MC333XG	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-MC363XG	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-MC393WJL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-MC423W	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-MC423WG	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-MC453X	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-MC453X	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-MC453XG	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-MC453XJL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-ME383WG	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-ME403U	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-ME403UG	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-ME403UJL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-ME423W	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-ME423WG	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-ME423WJL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-ME453X	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-ME453XG	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CB4400USL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CB4400WSL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CB4510UL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CB4510WL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CB4510XL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CB4550USL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CB6700UL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-CG6510UL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-PE456USL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-PE456USLG	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-PE456USLJL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-PE456WSLG	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-PE506UL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-PE506ULG	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-PE506ULJL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-PE506WL	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-PE506WLG	Version: 0 < updated projector firmware
Sharp Display Solutions, Ltd.	NP-PE506WLJL	Version: 0 < updated projector firmware

Show details on NVD website