CVE-2023-39341

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "https://www.soliton.co.jp/support/zerona_notice_2023.html", "name": "https://www.soliton.co.jp/support/zerona_notice_2023.html", "tags": ["Third Party Advisory"], "refsource": "MISC"}, {"url": "https://www.ffri.jp/security-info/index.htm", "name": "https://www.ffri.jp/security-info/index.htm", "tags": ["Vendor Advisory"], "refsource": "MISC"}, {"url": "https://jvn.jp/en/jp/JVN42527152/", "name": "https://jvn.jp/en/jp/JVN42527152/", "tags": ["Third Party Advisory"], "refsource": "MISC"}, {"url": "https://www.skyseaclientview.net/news/230807_01/", "name": "https://www.skyseaclientview.net/news/230807_01/", "tags": ["Third Party Advisory"], "refsource": "MISC"}, {"url": "https://www.sourcenext.com/support/i/2023/230718_01", "name": "https://www.sourcenext.com/support/i/2023/230718_01", "tags": ["Third Party Advisory"], "refsource": "MISC"}, {"url": "https://www.support.nec.co.jp/View.aspx?id=3140109240", "name": "https://www.support.nec.co.jp/View.aspx?id=3140109240", "tags": ["Permissions Required"], "refsource": "MISC"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "\"FFRI yarai\", \"FFRI yarai Home and Business Edition\" and their OEM products handle exceptional conditions improperly, which may lead to denial-of-service (DoS) condition. \r\nAffected products and versions are as follows: FFRI yarai versions 3.4.0 to 3.4.6 and 3.5.0, FFRI yarai Home and Business Edition version 1.4.0, InfoTrace Mark II Malware Protection (Mark II Zerona) versions 3.0.1 to 3.2.2, Zerona / Zerona PLUS versions 3.2.32 to 3.2.36, ActSecure ? versions 3.4.0 to 3.4.6 and 3.5.0, Dual Safe Powered by FFRI yarai version 1.4.1, EDR Plus Pack (Bundled FFRI yarai versions 3.4.0 to 3.4.6 and 3.5.0), and EDR Plus Pack Cloud (Bundled FFRI yarai versions 3.4.0 to 3.4.6 and 3.5.0)."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-755"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2023-39341", "ASSIGNER": "vultures@jpcert.or.jp"}}, "impact": {"baseMetricV3": {"cvssV3": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 3.3, "attackVector": "LOCAL", "baseSeverity": "LOW", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L", "integrityImpact": "NONE", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 1.4, "exploitabilityScore": 1.8}}, "publishedDate": "2023-08-09T03:15Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:ffri:ffri_yarai:1.4.0:*:*:*:home_and_business:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ffri:ffri_yarai:*:*:*:*:-:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "3.4.6", "versionStartIncluding": "3.4.0"}, {"cpe23Uri": "cpe:2.3:a:ffri:ffri_yarai:3.5.0:*:*:*:-:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ffri:dual_safe:1.4.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:soliton:zerona:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "3.2.36", "versionStartIncluding": "3.2.32"}, {"cpe23Uri": "cpe:2.3:a:soliton:zerona_plus:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "3.2.36", "versionStartIncluding": "3.2.32"}, {"cpe23Uri": "cpe:2.3:a:soliton:infotrace_mark_ii_malware_protection:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "3.2.2", "versionStartIncluding": "3.0.1"}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:nec:actsecure_x_managed_security_service:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "3.4.6", "versionStartIncluding": "3.4.0"}, {"cpe23Uri": "cpe:2.3:a:nec:actsecure_x_managed_security_service:3.5.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:skygroup:edr_plus_pack:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "3.4.6", "versionStartIncluding": "3.4.0"}, {"cpe23Uri": "cpe:2.3:a:skygroup:edr_plus_pack_cloud:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "3.4.6", "versionStartIncluding": "3.4.0"}, {"cpe23Uri": "cpe:2.3:a:skygroup:edr_plus_pack_cloud:3.5.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:skygroup:edr_plus_pack:3.5.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2023-08-22T22:14Z"}