CVE-2023-7077

Published Feb 5, 2024
Last updated 6 months ago
CVSS critical 9.8
Overview

Description: Sharp NEC Displays (P403, P463, P553, P703, P801, X554UN, X464UN, X554UNS, X464UNV, X474HB, X464UNS, X554UNV, X555UNS, X555UNV, X754HB, X554HB, E705, E805, E905, UN551S, UN551VS, X551UHD, X651UHD, X841UHD, X981UHD, MD551C8) allows an attacker execute remote code by sending unintended parameters in http request.
Source: psirt-info@cyber.jp.nec.com
NVD status: Modified
Risk scores

CVSS 3.1

Type: Primary
Base score: 9.8
Impact score: 5.9
Exploitability score: 3.9
Vector string: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Severity: CRITICAL
Weaknesses

psirt-info@cyber.jp.nec.com: CWE-22
nvd@nist.gov: CWE-22
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:sharp:nec_e705_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0C120DB1-F486-43FB-9324-5E4F14E67C94"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:sharp:nec_e705:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "D6360B5C-24A9-4D01-B799-58BF555662DE"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:sharp:nec_e805_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BAE57C71-303F-476A-A459-0B6E97EA6E29"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:sharp:nec_e805:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "86A76EBA-7A91-40A5-A4D3-578E3F71BDAC"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:sharp:nec_e905_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6EC2AE11-3B19-479C-880E-E4E1ACAB8B33"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:sharp:nec_e905:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "E5D9AC4E-607F-4FC5-A7A0-8BC8EB6BF4BF"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:sharp:nec_md551c8_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8C2872F9-E9CF-40FC-8720-713001BBA245"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:sharp:nec_md551c8:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "22B3A8A2-7BC1-48C3-AAD4-A30033D39D6D"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:sharp:nec_p403_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C6569274-749A-464D-843D-AB23E5CF103D"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:sharp:nec_p403:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "1DCD0E69-06DF-4F40-AC3B-049C862FB7AB"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:sharp:nec_p463_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "31B7B7BC-6053-4366-AC1B-816023DE4FBC"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:sharp:nec_p463:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "E8167A24-ACBF-4829-B545-E2F67350B953"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:sharp:nec_p553_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AA7EA4DE-9D91-4506-A3A1-401E370BC87D"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:sharp:nec_p553:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "F8508626-5879-478A-81A6-3F74293DF6D9"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:sharp:nec_p703_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7EA0A922-4290-4C5C-B983-4F2AF07CD793"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:sharp:nec_p703:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "691F39E9-AE1E-492D-B771-DF3C77E0591B"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:sharp:nec_p801_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8EC23A84-F5B9-4E63-9947-3902FC935006"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:sharp:nec_p801:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "DA28F7A6-26F4-40F1-BFC9-51ECED6081EB"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:sharp:nec_un551s_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "532E8B17-EBA4-4D1A-AF5C-432F11FFBC92"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:sharp:nec_un551s:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "044D46DD-9007-42E0-A144-A37E5678BE23"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:sharp:nec_un551vs_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C360287C-0FCB-43D7-93A7-F4368CCB89F9"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:sharp:nec_un551vs:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "EF299059-BA47-4336-8274-B3D6EAC6C914"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:sharp:nec_x464un_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "11520897-1D67-4E3F-9CDF-CB4A8E4FBF8F"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:sharp:nec_x464un:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "0FDC0E10-266A-436C-9CA2-323FF7F02401"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:sharp:nec_x464uns_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D5024805-3830-49DB-9CE5-3CF97628E616"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:sharp:nec_x464uns:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "FFAF9DA1-3D52-4B99-B413-DEF67A061B83"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:sharp:nec_x464unv_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "946BD29D-6E04-483D-920E-EDF2462FB029"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:sharp:nec_x464unv:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "0DEE2858-B1DA-40AE-81D4-A549FE3AD829"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:sharp:nec_x474hb_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D9E62E4C-B7A5-474A-92E8-CDAC61643E8E"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:sharp:nec_x474hb:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "D697B555-8419-4AE5-8222-29F10AFF743F"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:sharp:nec_x551uhd_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F36CC853-D2E6-4CE2-960D-F43159CB5BA6"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:sharp:nec_x551uhd:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "83C1CB05-6C17-492E-B963-54ADDBC802E9"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:sharp:nec_x554hb_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4AA58CEB-C0BA-42A0-A6E3-325BEC876E82"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:sharp:nec_x554hb:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "D487BF3D-94AA-4D9D-AB20-F026D889D12A"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:sharp:nec_x554un_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "208F0248-2638-484C-B2AD-02C635083D09"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:sharp:nec_x554un:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "89B210A7-91F0-47A7-BA2E-EEC67EEC9AF6"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:sharp:nec_x554uns_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6F8723D2-7FD5-4631-A9DC-01C43A7746F7"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:sharp:nec_x554uns:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "F7CD8355-4B38-4DD4-A02D-CBB0FC86751B"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:sharp:nec_x554unv_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BF42956F-1910-4897-A98F-1FD72BA99C61"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:sharp:nec_x554unv:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "1D65923F-A62B-4CCF-9ED2-BDF3C2062CDC"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:sharp:nec_x555uns_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8A75783E-0F9D-4637-988F-18BC7F5E7AA6"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:sharp:nec_x555uns:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "AB0F8AD9-94B5-4905-A90A-CB05CBD5578B"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:sharp:nec_x555unv_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "757DDD56-ABAD-4D82-BF4F-3D6524CAC262"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:sharp:nec_x555unv:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "15EFCA4E-D639-4BD6-AE46-6E2D452EB2BC"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:sharp:nec_x651uhd_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "30112680-A382-4518-8158-1F4193BAB2BB"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:sharp:nec_x651uhd:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "C1B22300-FFB3-4BAC-A73A-D959A64A0277"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:sharp:nec_x754hb_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3BC54BA7-DF14-4B30-8D96-D62CDC85DD7C"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:sharp:nec_x754hb:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "481F5FFA-BA7E-4604-B523-51F0D8CAA40E"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:sharp:nec_x841uhd_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "774044DF-DCB5-4785-9B5D-E6D48042FB80"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:sharp:nec_x841uhd:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "4522E14C-57AD-4A1F-B1DD-14D66ECEA379"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:sharp:nec_x981uhd_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7D7CA050-2E5B-4458-9149-E41DA7757DE4"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:sharp:nec_x981uhd:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "B932677E-D6D2-4238-90EA-1BA752693A06"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]
References

Sources include official advisories and independent security research.
Overview

Risk scores

CVSS 3.1

Weaknesses

Social media

Configurations

References
