发布日期：2022-12-16
更新日期：2023-03-10

受影响系统：

Sharp Sharp Digital Full-color Multifunctional System <= 790
Sharp Sharp Digital Full-color Multifunctional System <= 600
Sharp Sharp Digital Full-color Multifunctional System <= 500
Sharp Sharp Digital Full-color Multifunctional System <= 453
Sharp Sharp Digital Full-color Multifunctional System <= 402
Sharp Sharp Digital Full-color Multifunctional System <= 401
Sharp Sharp Digital Full-color Multifunctional System <= 400
Sharp Sharp Digital Full-color Multifunctional System <= 211
Sharp Sharp Digital Full-color Multifunctional System <= 202
Sharp Sharp Digital Full-color Multifunctional System <= 121
Sharp Sharp Digital Full-color Multifunctional System <= 120

描述：

---

CVE(CAN) ID: CVE-2022-45796

Sharp Digital Full-color Multifunctional System是日本夏普（Sharp）公司的一系列数字全才多功能打印机。
Sharp Digital Full-color Multifunctional System多个版本的nw_interface.html存在命令注入漏洞。远程攻击者可利用该漏洞执行任意命令。

<*链接：https://global.sharp/products/copier/info/info_security_2022-11.html
*>

建议：

---

厂商补丁：

Sharp
-----
Sharp已经为此发布了一个安全公告（security_2022-11）以及相应补丁:
security_2022-11：About Command Injection Security Vulnerability in SHARP Multifunctional Products (MFP)
链接：https://global.sharp/products/copier/info/info_security_2022-11.html

浏览次数：1092
严重程度：0（网友投票）