CVE-2023-40144 Information

Description

OS command injection vulnerability in the CBC products allows a remote authenticated attacker to execute an arbitrary OS command on the device or alter its settings. As for the affected products/versions see the detailed information provided by the vendor. Note that NR4H NR8H NR16H series and DR-16F DR-8F DR-4F DR-16H DR-8H DR-4H DR-4M41 series are no longer supported therefore updates for those products are not provided.

Reference

https://ganzsecurity.com/release/1578/digimasterpixelmaster-security-notice https://jvn.jp/en/vu/JVNVU92545432/ https://download.ganzsecurity.pl/