CVE-2023-22654 Information

May 24, 2023 cve

Description

Client-side enforcement of server-side security issue exists in T&D Corporation and ESPEC MIC CORP. data logger products which may lead to an arbitrary script execution on a logged-in user’s web browser. Affected products and versions are as follows: T&D Corporation data logger products (TR-71W/72W all firmware versions RTR-5W all firmware versions WDR-7 all firmware versions WDR-3 all firmware versions and WS-2 all firmware versions) and ESPEC MIC CORP. data logger products (RT-12N/RS-12N all firmware versions RT-22BN all firmware versions and TEU-12N all firmware versions).

Reference

https://www.monitoring.especmic.co.jp/post/VulnerabilityInRT-12N_RS-12N_RT-22BNandTEU-12N https://jvn.jp/en/jp/JVN14778242/ https://www.tandd.com/news/detail.html?id=780

Share on: