cbcvebase.
CVE-2023-3741
published 2023-11-30

CVE-2023-3741: An OS Command injection vulnerability in NEC Platforms DT900 and DT900S Series all versions allows an attacker to execute any command on the device.

PriorityP266critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
1.50%
71.0th percentile
An OS Command injection vulnerability in NEC Platforms DT900 and DT900S Series all versions allows an attacker to execute any command on the device.

Affected

22 ranges
VendorProductVersion rangeFixed in
nec_platforms_ltditk-12d-1_tel
nec_platforms_ltditk-12d-1p_tel
nec_platforms_ltditk-12dg-1p_tel
nec_platforms_ltditk-32lcg-1p_tel
nec_platforms_ltditk-32lcgs-1_tel
nec_platforms_ltditk-32lcgs-1a_tel
nec_platforms_ltditk-32lcgs-1p_tel
nec_platforms_ltditk-32tcg-1p_tel
nec_platforms_ltditk-32tcgs-1_tel
nec_platforms_ltditk-32tcgs-1a_tel
nec_platforms_ltditk-32tcgs-1p_tel
nec_platforms_ltditk-6d-1_tel
nec_platforms_ltditk-6d-1p_tel
nec_platforms_ltditk-6dg-1p_tel
nec_platforms_ltditk-6dgs-1_tel
nec_platforms_ltditk-6dgs-1a_tel
nec_platforms_ltditk-6dgs-1p_tel
nec_platforms_ltditk-8lcg-1p_tel
nec_platforms_ltditk-8lcx-1_tel
nec_platforms_ltditk-8lcx-1p_tel
nec_platforms_ltditk-8tcgx-1_tel
nec_platforms_ltditk-8tcgx-1p_tel
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.