CVE-2022-22986

Summary

Netcommunity OG410X and OG810X series (Netcommunity OG410Xa, OG410Xi, OG810Xa, and OG810Xi firmware Ver.2.28 and earlier) allow an attacker on the adjacent network to execute an arbitrary OS command via a specially crafted config file.

Affected Software

VendorProductVersion RangeStatus
NIPPON TELEGRAPH AND TELEPHONE EAST CORPORATION (NTT East) and NIPPON TELEGRAPH AND TELEPHONE WEST CORPORATION (NTT West)Netcommunity OG410X and OG810X seriesNetcommunity OG410Xa, OG410Xi, OG810Xa and OG810Xi firmware Ver.2.28 and earlieraffected

Weaknesses

  • OS Command Injection

ADP Enrichment

CVE Program Container

Additional References

References