CVSS: 10.0EPSS: 1%CPEs: 8EXPL: 0CVE-2021-37384
https://notcve.org/view.php?id=CVE-2021-37384
17 Jul 2023 — RCE (Remote Code Execution) vulnerability was found in some Furukawa ONU models, this vulnerability allows remote unauthenticated users to send arbitrary commands to the device via web interface. • https://cwe.mitre.org/data/definitions/94.html • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 0CVE-2021-37386
https://notcve.org/view.php?id=CVE-2021-37386
17 Jul 2023 — Furukawa Electric LatAm 423-41W/AC before v1.1.4 and LD421-21W before v1.3.3 were discovered to contain an HTML injection vulnerability via the serial number update function. • https://cwe.mitre.org/data/definitions/79.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •