CVSS: 7.7EPSS: 0%CPEs: 90EXPL: 0CVE-2018-0512
https://notcve.org/view.php?id=CVE-2018-0512
08 Feb 2018 — Devices with IP address setting tool "MagicalFinder" provided by I-O DATA DEVICE, INC. allow authenticated attackers to execute arbitrary OS commands via unspecified vectors. Los dispositivos con la herramienta de configuración de direcciones IP MagicalFinder proporcionada por I-O DATA DEVICE, INC. permiten que atacantes autenticados ejecuten comandos arbitrarios del sistema operativo mediante vectores sin especificar. • http://www.iodata.jp/support/information/2018/magicalfinder • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 9.1EPSS: 0%CPEs: 7EXPL: 0CVE-2013-4712
https://notcve.org/view.php?id=CVE-2013-4712
19 Oct 2013 — I-O DATA DEVICE HDL-A and HDL2-A devices with firmware 1.07 and earlier do not properly manage sessions, which allows remote attackers to obtain sensitive information or modify data via unspecified vectors. Dispositivos I-O DATA DEVICE HDL-A y HDL2-A con firmware 1.07 y anteriores no gestionan adecuadamente las sesiones, lo que permite a atacantes remotos obtener información sensible o modificar datos mediante vectores no especificados. • http://jvn.jp/en/jp/JVN52509236/225184/index.html • CWE-399: Resource Management Errors •