Skip to main content

Bp 30C25 Firmware CVE-2022-45796

HIGH
Command Injection (CWE-77)
2022-12-16 ART@zuso.ai
Command Injection Bp 30C25 Firmware Bp 30C25T Firmware Bp 30C25Y Firmware Bp 30C25Z Firmware Bp 30M28 Firmware Bp 30M28T Firmware Bp 30M31 Firmware Bp 30M31T Firmware Bp 30M35 Firmware Bp 30M35T Firmware Bp 50C26 Firmware Bp 50C31 Firmware Bp 50C36 Firmware Bp 50C45 Firmware Bp 50C55 Firmware Bp 50C65 Firmware Bp 50M26 Firmware Bp 50M31 Firmware Bp 50M36 Firmware Bp 50M45 Firmware Bp 50M50 Firmware Bp 50M55 Firmware Bp 55C26 Firmware Bp 60C31 Firmware Bp 60C36 Firmware Bp 60C45 Firmware Bp 70C31 Firmware Bp 70C36 Firmware Bp 70C45 Firmware Bp 70C55 Firmware Bp 70C65 Firmware Bp 70M31 Firmware Bp 70M36 Firmware Bp 70M45 Firmware Bp 70M55 Firmware Bp 70M65 Firmware Bp 70M75 Firmware Bp 70M90 Firmware Mx 2630N Firmware Mx 2651 Firmware Mx 3050N Firmware Mx 3050N A Firmware Mx 3050V Firmware Mx 3050V A Firmware Mx 3051 Firmware Mx 3060N Firmware Mx 3060V Firmware Mx 3061 Firmware Mx 3061S Firmware Mx 3070N Firmware Mx 3070N A Firmware Mx 3070V Firmware Mx 3070V A Firmware Mx 3071 Firmware Mx 3071S Firmware Mx 3550N Firmware Mx 3550V Firmware Mx 3551 Firmware Mx 3560N Firmware Mx 3560V Firmware Mx 3561 Firmware Mx 3561S Firmware Mx 3570N Firmware Mx 3570V Firmware Mx 3571 Firmware Mx 3571S Firmware Mx 4050N Firmware Mx 4050V Firmware Mx 4051 Firmware Mx 4060N Firmware Mx 4060V Firmware Mx 4061 Firmware Mx 4061S Firmware Mx 4070N Firmware Mx 4070N A Firmware Mx 4070V Firmware Mx 4070V A Firmware Mx 4071 Firmware Mx 4071S Firmware Mx 5050N Firmware Mx 5050V Firmware Mx 5051 Firmware Mx 5070N Firmware Mx 5070V Firmware Mx 5071 Firmware Mx 5071S Firmware Mx 6050N Firmware Mx 6050V Firmware Mx 6051 Firmware Mx 6070N Firmware Mx 6070N A Firmware Mx 6070V Firmware Mx 6070V A Firmware Mx 6071 Firmware Mx 6071S Firmware Mx 6580N Firmware Mx 7081 Firmware Mx 7090N Firmware Mx 7580N Firmware Mx 8081 Firmware Mx 8090N Firmware Mx B355W Firmware Mx B355Wt Firmware Mx B355Wz Firmware Mx B356W Firmware Mx B356Wh Firmware Mx B376W Firmware Mx B376Wh Firmware Mx B455W Firmware Mx B455Wt Firmware Mx B455Wz Firmware Mx B456W Firmware Mx B456Wh Firmware Mx B476W Firmware Mx B476Wh Firmware Mx C303 Firmware Mx C303W Firmware Mx C303Wh Firmware Mx C304 Firmware Mx C304W Firmware Mx C304Wh Firmware Mx M1056 Firmware Mx M1206 Firmware Mx M2630 Firmware Mx M2630 A Firmware Mx M2651 Firmware Mx M3050 Firmware Mx M3050 A Firmware Mx M3051 Firmware Mx M3070 Firmware Mx M3070 A Firmware Mx M3071 Firmware Mx M3071S Firmware Mx M3550 Firmware Mx M3551 Firmware Mx M3570 Firmware Mx M3571 Firmware Mx M3571S Firmware Mx M4050 Firmware Mx M4051 Firmware Mx M4070 Firmware Mx M4070 A Firmware Mx M4071 Firmware Mx M4071S Firmware Mx M5050 Firmware Mx M5051 Firmware Mx M5070 Firmware Mx M5071 Firmware Mx M5071S Firmware Mx M6050 Firmware Mx M6051 Firmware Mx M6070 Firmware Mx M6070 A Firmware Mx M6071 Firmware Mx M6071S Firmware Mx M6570 Firmware Mx M7570 Firmware Mx M905 Firmware
7.2
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
7.2 HIGH
AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
High
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

1
CVE Published
Dec 16, 2022 - 16:15 nvd
HIGH 7.2

DescriptionNVD

Command injection vulnerability in nw_interface.html in SHARP multifunction printers (MFPs)'s Digital Full-color Multifunctional System 202 or earlier, 120 or earlier, 600 or earlier, 121 or earlier, 500 or earlier, 402 or earlier, 790 or earlier, and Digital Multifunctional System (Monochrome) 200 or earlier, 211 or earlier, 102 or earlier, 453 or earlier, 400 or earlier, 202 or earlier, 602 or earlier, 500 or earlier, 401 or earlier allows remote attackers to execute arbitrary commands via unspecified vectors.

AnalysisAI

Command injection vulnerability in nw_interface.html in SHARP multifunction printers (MFPs)'s Digital Full-color Multifunctional System 202 or earlier, 120 or earlier, 600 or earlier, 121 or earlier,. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Technical ContextAI

This vulnerability is classified as Command Injection (CWE-77), which allows attackers to inject arbitrary commands into system command execution. Command injection vulnerability in nw_interface.html in SHARP multifunction printers (MFPs)'s Digital Full-color Multifunctional System 202 or earlier, 120 or earlier, 600 or earlier, 121 or earlier, 500 or earlier, 402 or earlier, 790 or earlier, and Digital Multifunctional System (Monochrome) 200 or earlier, 211 or earlier, 102 or earlier, 453 or earlier, 400 or earlier, 202 or earlier, 602 or earlier, 500 or earlier, 401 or earlier allows remote attackers to execute arbitrary commands via unspecified vectors. Affected products include: Sharp Bp-30C25 Firmware, Sharp Bp-30C25T Firmware, Sharp Bp-30C25Y Firmware, Sharp Bp-30C25Z Firmware, Sharp Bp-30M28 Firmware.

RemediationAI

No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Use parameterized APIs, avoid shell execution, validate input with strict allowlists.

Share

CVE-2022-45796 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy