Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-39546

CLUSTERPRO X Ver5.1 and earlier and EXPRESSCLUSTER X 5.1 and earlier, CLUSTERPRO X SingleServerSafe 5.1 and earlier, EXPRESSCLUSTER X SingleServerSafe 5.1 and earlier allows a attacker to log in to the product may execute an arbitrary command.

Published

2023-11-17T06:15:33.947

Last Modified

2024-11-21T08:15:38.990

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 8.8 (HIGH)

Weaknesses

Type: Secondary
CWE-836
Type: Primary
NVD-CWE-noinfo

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	nec	expresscluster_x	1.0	Yes
Application	nec	expresscluster_x	1.0	Yes
Application	nec	expresscluster_x	2.0	Yes
Application	nec	expresscluster_x	2.0	Yes
Application	nec	expresscluster_x	2.1	Yes
Application	nec	expresscluster_x	2.1	Yes
Application	nec	expresscluster_x	3.0	Yes
Application	nec	expresscluster_x	3.0	Yes
Application	nec	expresscluster_x	3.1	Yes
Application	nec	expresscluster_x	3.1	Yes
Application	nec	expresscluster_x	3.2	Yes
Application	nec	expresscluster_x	3.2	Yes
Application	nec	expresscluster_x	3.3	Yes
Application	nec	expresscluster_x	3.3	Yes
Application	nec	expresscluster_x	4.0	Yes
Application	nec	expresscluster_x	4.0	Yes
Application	nec	expresscluster_x	4.1	Yes
Application	nec	expresscluster_x	4.1	Yes
Application	nec	expresscluster_x	4.2	Yes
Application	nec	expresscluster_x	4.2	Yes
Application	nec	expresscluster_x	4.3	Yes
Application	nec	expresscluster_x	4.3	Yes
Application	nec	expresscluster_x	5.0	Yes
Application	nec	expresscluster_x	5.0	Yes
Application	nec	expresscluster_x	5.1	Yes
Application	nec	expresscluster_x	5.1	Yes
Application	nec	expresscluster_x_singleserversafe	1.0	Yes
Application	nec	expresscluster_x_singleserversafe	1.0	Yes
Application	nec	expresscluster_x_singleserversafe	2.0	Yes
Application	nec	expresscluster_x_singleserversafe	2.0	Yes
Application	nec	expresscluster_x_singleserversafe	2.1	Yes
Application	nec	expresscluster_x_singleserversafe	2.1	Yes
Application	nec	expresscluster_x_singleserversafe	3.0	Yes
Application	nec	expresscluster_x_singleserversafe	3.0	Yes
Application	nec	expresscluster_x_singleserversafe	3.1	Yes
Application	nec	expresscluster_x_singleserversafe	3.1	Yes
Application	nec	expresscluster_x_singleserversafe	3.2	Yes
Application	nec	expresscluster_x_singleserversafe	3.2	Yes
Application	nec	expresscluster_x_singleserversafe	3.3	Yes
Application	nec	expresscluster_x_singleserversafe	3.3	Yes
Application	nec	expresscluster_x_singleserversafe	4.0	Yes
Application	nec	expresscluster_x_singleserversafe	4.0	Yes
Application	nec	expresscluster_x_singleserversafe	4.1	Yes
Application	nec	expresscluster_x_singleserversafe	4.1	Yes
Application	nec	expresscluster_x_singleserversafe	4.2	Yes
Application	nec	expresscluster_x_singleserversafe	4.2	Yes
Application	nec	expresscluster_x_singleserversafe	4.3	Yes
Application	nec	expresscluster_x_singleserversafe	4.3	Yes
Application	nec	expresscluster_x_singleserversafe	5.0	Yes
Application	nec	expresscluster_x_singleserversafe	5.0	Yes
Application	nec	expresscluster_x_singleserversafe	5.1	Yes
Application	nec	expresscluster_x_singleserversafe	5.1	Yes

References

https://jpn.nec.com/security-info/secinfo/nv23-009_en.html Third Party Advisory ([email protected])
https://jpn.nec.com/security-info/secinfo/nv23-009_en.html Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)