CVE-2023-40072 Information

Description

OS command injection vulnerability in WAB-S600-PS all versions and WAB-S300 all versions allows an authenticated user to execute an arbitrary OS command by sending a specially crafted request.

Reference

https://jvn.jp/en/vu/JVNVU91630351/ https://www.elecom.co.jp/news/security/20230810-01/