MidnightBSD

Advisories for icom

CVE-2023-28390

Privilege escalation vulnerability in SR-7100VN firmware Ver.1.38(N) and earlier and SR-7100VN #31 firmware Ver.1.21 and earlier allows a network-adjacent attacker with administrative privilege of the affected product to obtain an administrative privilege of the OS (Operating System). As a result, an arbitrary OS command may be executed.

Products Affected

Vendor Product Version
icom sr-7100vn#31_firmware *
icom sr-7100vn_firmware *