CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 0CVE-2018-0676
https://notcve.org/view.php?id=CVE-2018-0676
BN-SDWBP3 firmware version 1.0.9 and earlier allows an attacker on the same network segment to bypass authentication to access to the management screen and execute an arbitrary command via unspecified vectors. BN-SDWBP3, con firmware 1.0.9 y anteriores, permite a un atacante en el mismo segmento de red omitir la autenticación para acceder a la pantalla de gestión y ejecutar un comando arbitrario mediante vectores sin especificar. • https://jvn.jp/en/jp/JVN65082538/index.html https://p3.support.panasonic.com/faq/show/5017?&site_domain=p3 • CWE-287: Improper Authentication •
CVSS: 6.8EPSS: 0%CPEs: 2EXPL: 0CVE-2018-0678
https://notcve.org/view.php?id=CVE-2018-0678
Buffer overflow in BN-SDWBP3 firmware version 1.0.9 and earlier allows an attacker on the same network segment to execute arbitrary code via unspecified vectors. Un desbordamiento de búfer en BN-SDWBP3, con firmware 1.0.9 y anteriores, permite a un atacante con permisos de administrador en el mismo segmento de red ejecutar código arbitrario mediante vectores sin especificar. • https://jvn.jp/en/jp/JVN65082538/index.html https://p3.support.panasonic.com/faq/show/5017?&site_domain=p3 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.7EPSS: 0%CPEs: 2EXPL: 0CVE-2018-0677
https://notcve.org/view.php?id=CVE-2018-0677
BN-SDWBP3 firmware version 1.0.9 and earlier allows attacker with administrator rights on the same network segment to execute arbitrary OS commands via unspecified vectors. BN-SDWBP3, con firmware 1.0.9 y anteriores, permite a un atacante con permisos de administrador en el mismo segmento de red ejecutar comandos arbitrarios del sistema operativo mediante vectores sin especificar. • https://jvn.jp/en/jp/JVN65082538/index.html https://p3.support.panasonic.com/faq/show/5017?&site_domain=p3 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •