Information from Century Systems Co., Ltd.
Vulnerability ID:JVNVU#92821536
Title:Improper symbolic link file handling in FutureNet NXR series, VXR series and WXR series routers
Status:Vulnerable
This is a statement from the vendor itself with no modification by JPCERT/CC.
The following FutureNet NXR/VXR series products and versions are affected by this vulnerability.
Applicable products
FutureNet NXR-1420 firmware Version 31.0.1
FutureNet NXR-1300 series firmware Version 7.4.12 and earlier
FutureNet NXR-650 firmware Version 21.16.5 and earlier
FutureNet NXR-610X series firmware Version 21.14.11D and earlier
FutureNet NXR-530 firmware Version 21.11.15 and earlier
FutureNet NXR-350/C firmware Version 5.30.9C and earlier
FutureNet NXR-230/C firmware Version 5.30.13 and earlier
FutureNet NXR-160/LW firmware Version 21.8.4 and earlier
FutureNet NXR-G540 series firmware Version 21.17.0
FutureNet NXR-G260 series firmware Version 9.12.17 and earlier
FutureNet NXR-G240 series firmware Version 9.12.17 and earlier
FutureNet NXR-G180/L-CA firmware Version 21.7.33 and earlier
FutureNet NXR-G120 series firmware Version 21.15.2C1 and earlier
FutureNet NXR-G110 series firmware Version 21.15.10 and earlier
FutureNet NXR-G100 series firmware Version 6.23.11 and earlier
FutureNet NXR-G060 series firmware Version 21.15.6C2 and earlier
FutureNet NXR-G050 series firmware Version 21.12.11 and earlier
FutureNet VXR/x64 firmware Version 21.7.33 and earlier
FutureNet VXR/x86 firmware Version 10.1.5 and earlier
We provide information on this issue at the following URL
https://www.centurysys.co.jp/backnumber/common/jvnvu92821536.html
