CVE-2022-43464
published 2022-12-07CVE-2022-43464: Hidden functionality vulnerability in UDR-JA1604/UDR-JA1608/UDR-JA1616 firmware versions 71x10.1.107112.43A and earlier allows a remote authenticated attacker…
PriorityP357high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
EPSS
1.00%
58.4th percentile
Hidden functionality vulnerability in UDR-JA1604/UDR-JA1608/UDR-JA1616 firmware versions 71x10.1.107112.43A and earlier allows a remote authenticated attacker to execute an arbitrary OS command on the device or alter the device settings.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| unimo | udr-ja1604_firmware | < 71x10.1.107114.43a | 71x10.1.107114.43a |
| unimo | udr-ja1608_firmware | < 71x10.1.107114.43a | 71x10.1.107114.43a |
| unimo | udr-ja1616_firmware | < 71x10.1.107114.43a | 71x10.1.107114.43a |
| unimo_technology_co_ltd | udr-ja1604_udr-ja1608_udr-ja1616 | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2022-12-07
Published