CVE-2023-28390

MEDIUM 6.8

CVSS Score

6.8

EPSS Score

0.0%

EPSS Percentile

0th

Privilege escalation vulnerability in SR-7100VN firmware Ver.1.38(N) and earlier and SR-7100VN #31 firmware Ver.1.21 and earlier allows a network-adjacent attacker with administrative privilege of the affected product to obtain an administrative privilege of the OS (Operating System). As a result, an arbitrary OS command may be executed.

Vendor	icom incorporated
Product	sr-7100vn
Published	May 23, 2023
Last Updated	Jan 17, 2025

Stay Ahead of the Next One

Get instant alerts for icom incorporated sr-7100vn

Be the first to know when new medium vulnerabilities affecting icom incorporated sr-7100vn are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

ICOM INCORPORATED / SR-7100VN

SR-7100VN firmware Ver.1.38(N) and earlier, and SR-7100VN #31 firmware Ver.1.21 and earlier

References

NVD ↗ CVE.org ↗ EPSS Data ↗

icom.co.jp: https://www.icom.co.jp/news/7239/ jvn.jp: https://jvn.jp/en/jp/JVN80476232/