#VU70411 Command Injection in Sharp Corporation products - CVE-2022-45796
Published: December 19, 2022
Vulnerability identifier: #VU70411
Vulnerability risk: Low
CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2022-45796
CWE-ID: CWE-77
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vulnerable software:
BP-70C65
BP-70C55
BP-70C45
BP-70C36
BP-70C31
BP-60C45
BP-60C36
BP-60C31
BP-50C65
BP-50C55
BP-50C45
BP-50C36
BP-50C31
BP-50C26
BP-55C26
MX-8081
MX-7081
MX-6071
MX-5071
MX-4071
MX-3571
MX-3071
MX-4061
MX-3561
MX-3061
MX-6051
MX-5051
MX-4051
MX-3551
MX-3051
MX-2651
MX-6071S
MX-5071S
MX-4071S
MX-3571S
MX-3071S
MX-4061S
MX-3561S
MX-3061S
BP-30C25
BP-30C25Y
BP-30C25Z
BP-30C25T
MX-7580N
MX-6580N
MX-8090N
MX-7090N
MX-6070N
MX-5070N
MX-4070N
MX-3570N
MX-3070N
MX-4060N
MX-3560N
MX-3060N
MX-6070V
MX-5070V
MX-4070V
MX-3570V
MX-3070V
MX-4060V
MX-3560V
MX-3060V
MX-6070N A
MX-4070N A
MX-3070N A
MX-6070V A
MX-4070V A
MX-3070V A
MX-6050N
MX-5050N
MX-4050N
MX-3550N
MX-3050N
MX-6050V
MX-5050V
MX-4050V
MX-3550V
MX-3050V
MX-2630N
MX-3050N A
MX-3050V A
MX-C304W
MX-C303W
MX-C304
MX-C303
MX-C304WH
MX-C303WH
BP-70M90
BP-70M75
BP-70M65
BP-70M55
BP-70M45
BP-70M36
BP-70M31
BP-50M55
BP-50M50
BP-50M45
BP-50M36
BP-50M31
BP-50M26
MX-M1206
MX-M1056
MX-M7570
MX-M6570
MX-M6071
MX-M5071
MX-M4071
MX-M3571
MX-M3071
MX-M6051
MX-M5051
MX-M4051
MX-M3551
MX-M3051
MX-M2651
MX-M3571S
MX-M3071S
MX-M6071S
MX-M5071S
MX-M4071S
BP-30M35
BP-30M31
BP-30M28
BP-30M35T
BP-30M31T
BP-30M28T
MX-B476W
MX-B376W
MX-B456W
MX-B356W
MX-B476WH
MX-B376WH
MX-B456WH
MX-B356WH
MX-M905
MX-M6070
MX-M5070
MX-M4070
MX-M3570
MX-M3070
MX-M6050
MX-M5050
MX-M4050
MX-M3550
MX-M3050
MX-M2630
MX-M6070 A
MX-M4070 A
MX-M3070 A
MX-M3050 A
MX-M2630 A
MX-B455W
MX-B355W
MX-B455WZ
MX-B355WZ
MX-B455WT
MX-B355WT
BP-70C65
BP-70C55
BP-70C45
BP-70C36
BP-70C31
BP-60C45
BP-60C36
BP-60C31
BP-50C65
BP-50C55
BP-50C45
BP-50C36
BP-50C31
BP-50C26
BP-55C26
MX-8081
MX-7081
MX-6071
MX-5071
MX-4071
MX-3571
MX-3071
MX-4061
MX-3561
MX-3061
MX-6051
MX-5051
MX-4051
MX-3551
MX-3051
MX-2651
MX-6071S
MX-5071S
MX-4071S
MX-3571S
MX-3071S
MX-4061S
MX-3561S
MX-3061S
BP-30C25
BP-30C25Y
BP-30C25Z
BP-30C25T
MX-7580N
MX-6580N
MX-8090N
MX-7090N
MX-6070N
MX-5070N
MX-4070N
MX-3570N
MX-3070N
MX-4060N
MX-3560N
MX-3060N
MX-6070V
MX-5070V
MX-4070V
MX-3570V
MX-3070V
MX-4060V
MX-3560V
MX-3060V
MX-6070N A
MX-4070N A
MX-3070N A
MX-6070V A
MX-4070V A
MX-3070V A
MX-6050N
MX-5050N
MX-4050N
MX-3550N
MX-3050N
MX-6050V
MX-5050V
MX-4050V
MX-3550V
MX-3050V
MX-2630N
MX-3050N A
MX-3050V A
MX-C304W
MX-C303W
MX-C304
MX-C303
MX-C304WH
MX-C303WH
BP-70M90
BP-70M75
BP-70M65
BP-70M55
BP-70M45
BP-70M36
BP-70M31
BP-50M55
BP-50M50
BP-50M45
BP-50M36
BP-50M31
BP-50M26
MX-M1206
MX-M1056
MX-M7570
MX-M6570
MX-M6071
MX-M5071
MX-M4071
MX-M3571
MX-M3071
MX-M6051
MX-M5051
MX-M4051
MX-M3551
MX-M3051
MX-M2651
MX-M3571S
MX-M3071S
MX-M6071S
MX-M5071S
MX-M4071S
BP-30M35
BP-30M31
BP-30M28
BP-30M35T
BP-30M31T
BP-30M28T
MX-B476W
MX-B376W
MX-B456W
MX-B356W
MX-B476WH
MX-B376WH
MX-B456WH
MX-B356WH
MX-M905
MX-M6070
MX-M5070
MX-M4070
MX-M3570
MX-M3070
MX-M6050
MX-M5050
MX-M4050
MX-M3550
MX-M3050
MX-M2630
MX-M6070 A
MX-M4070 A
MX-M3070 A
MX-M3050 A
MX-M2630 A
MX-B455W
MX-B355W
MX-B455WZ
MX-B355WZ
MX-B455WT
MX-B355WT
Software vendor:
Sharp Corporation
Sharp Corporation
Description
The vulnerability allows a remote user to execute arbitrary commands on the target system.
The vulnerability exists due to improper input validation. A remote administrator can pass specially crafted data to the application and execute arbitrary commands on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
Remediation
Install updates from vendor's website.