CVE-2023-28390 Information

Description

Privilege escalation vulnerability in SR-7100VN firmware Ver.1.38(N) and earlier and SR-7100VN 31 firmware Ver.1.21 and earlier allows a network-adjacent attacker with administrative privilege of the affected product to obtain an administrative privilege of the OS (Operating System). As a result an arbitrary OS command may be executed.

Reference

https://jvn.jp/en/jp/JVN80476232/ https://www.icom.co.jp/news/7239/