CVE-2024-36251 - Vulnerability Details

Vendors	Products
Sharp	Bp-b537wr Bp-b540wr Bp-b547wd Bp-b550wd Mx-b355w Mx-b355wt Mx-b355wz Mx-b455w Mx-b455wt Mx-b455wz Mx-m2630 Mx-m3050 Mx-m3070 Mx-m3550 Mx-m3570 Mx-m4050 Mx-m4070 Mx-m5050 Mx-m5070 Mx-m6050 Mx-m6070 Mx-m905

Link	Providers
https://global.sharp/products/copier/info/info_security_2024-05.html
https://jp.sharp/business/print/information/info_security_2024-05.html
https://jvn.jp/en/vu/JVNVU93051062/
https://pierrekim.github.io/blog/2024-06-27-sharp-mfp-17-vulnerabilities.html
https://www.toshibatec.co.jp/information/20240531_02.html
https://www.toshibatec.com/information/20240531_02.html

Type	Values Removed	Values Added
First Time appeared		Sharp Sharp bp-b537wr Sharp bp-b540wr Sharp bp-b547wd Sharp bp-b550wd Sharp mx-b355w Sharp mx-b355wt Sharp mx-b355wz Sharp mx-b455w Sharp mx-b455wt Sharp mx-b455wz Sharp mx-m2630 Sharp mx-m3050 Sharp mx-m3070 Sharp mx-m3550 Sharp mx-m3570 Sharp mx-m4050 Sharp mx-m4070 Sharp mx-m5050 Sharp mx-m5070 Sharp mx-m6050 Sharp mx-m6070 Sharp mx-m905
CPEs		cpe:2.3:h:sharp:bp-b537wr:-:::::::* cpe:2.3:h:sharp:bp-b540wr:-:::::::* cpe:2.3:h:sharp:bp-b547wd:-:::::::* cpe:2.3:h:sharp:bp-b550wd:-:::::::* cpe:2.3:h:sharp:mx-b355w:-:::::::* cpe:2.3:h:sharp:mx-b355wt:-:::::::* cpe:2.3:h:sharp:mx-b355wz:-:::::::* cpe:2.3:h:sharp:mx-b455w:-:::::::* cpe:2.3:h:sharp:mx-b455wt:-:::::::* cpe:2.3:h:sharp:mx-b455wz:-:::::::* cpe:2.3:h:sharp:mx-m2630:-:::::::* cpe:2.3:h:sharp:mx-m3050:-:::::::* cpe:2.3:h:sharp:mx-m3070:-:::::::* cpe:2.3:h:sharp:mx-m3550:-:::::::* cpe:2.3:h:sharp:mx-m3570:-:::::::* cpe:2.3:h:sharp:mx-m4050:-:::::::* cpe:2.3:h:sharp:mx-m4070:-:::::::* cpe:2.3:h:sharp:mx-m5050:-:::::::* cpe:2.3:h:sharp:mx-m5070:-:::::::* cpe:2.3:h:sharp:mx-m6050:-:::::::* cpe:2.3:h:sharp:mx-m6070:-:::::::* cpe:2.3:h:sharp:mx-m905:-:::::::*
Vendors & Products		Sharp Sharp bp-b537wr Sharp bp-b540wr Sharp bp-b547wd Sharp bp-b550wd Sharp mx-b355w Sharp mx-b355wt Sharp mx-b355wz Sharp mx-b455w Sharp mx-b455wt Sharp mx-b455wz Sharp mx-m2630 Sharp mx-m3050 Sharp mx-m3070 Sharp mx-m3550 Sharp mx-m3570 Sharp mx-m4050 Sharp mx-m4070 Sharp mx-m5050 Sharp mx-m5070 Sharp mx-m6050 Sharp mx-m6070 Sharp mx-m905
Metrics		ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Type	Values Removed	Values Added
Description		The web interface of the affected devices process some crafted HTTP requests improperly, leading to a device crash. More precisely, a crafted parameter to billcodedef_sub_sel.html is not processed properly and device-crash happens. As for the details of affected product names, model numbers, and versions, refer to the information provided by the respective vendors listed under [References].
Weaknesses		CWE-125
References		https://global.sharp/products/copier/info/info_security_2024-05.html https://jp.sharp/business/print/information/info_security_2024-05.html https://jvn.jp/en/vu/JVNVU93051062/ https://pierrekim.github.io/blog/2024-06-27-sharp-mfp-17-vulnerabilities.html https://www.toshibatec.co.jp/information/20240531_02.html https://www.toshibatec.com/information/20240531_02.html
Metrics		cvssV3_1 `{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H'}`

Show plain JSON

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-36251", "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce", "state": "PUBLISHED", "assignerShortName": "jpcert", "dateReserved": "2024-05-22T09:00:10.181Z", "datePublished": "2024-11-26T07:38:24.464Z", "dateUpdated": "2024-11-26T16:28:15.625Z"}, "containers": {"cna": {"affected": [{"vendor": "Sharp Corporation", "product": "Multiple MFPs (multifunction printers)", "versions": [{"version": "See the information provided by Sharp Corporation listed under [References]", "status": "affected"}]}, {"vendor": "Toshiba Tec Corporation", "product": "Multiple MFPs (multifunction printers)", "versions": [{"version": "See the information provided by Toshiba Tec Corporation listed under [References]", "status": "affected"}]}], "descriptions": [{"lang": "en", "value": "The web interface of the affected devices process some crafted HTTP requests improperly, leading to a device crash. More precisely, a crafted parameter to billcodedef_sub_sel.html is not processed properly and device-crash happens. As for the details of affected product names, model numbers, and versions, refer to the information provided by the respective vendors listed under [References]."}], "problemTypes": [{"descriptions": [{"description": "Out-of-bounds read", "lang": "en-US", "cweId": "CWE-125", "type": "CWE"}]}], "references": [{"url": "https://global.sharp/products/copier/info/info_security_2024-05.html"}, {"url": "https://jp.sharp/business/print/information/info_security_2024-05.html"}, {"url": "https://www.toshibatec.com/information/20240531_02.html"}, {"url": "https://www.toshibatec.co.jp/information/20240531_02.html"}, {"url": "https://jvn.jp/en/vu/JVNVU93051062/"}, {"url": "https://pierrekim.github.io/blog/2024-06-27-sharp-mfp-17-vulnerabilities.html"}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en-US", "value": "GENERAL"}], "cvssV3_1": {"version": "3.1", "baseSeverity": "HIGH", "baseScore": 7.5, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}}], "providerMetadata": {"orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce", "shortName": "jpcert", "dateUpdated": "2024-11-26T07:38:24.464Z"}}, "adp": [{"affected": [{"vendor": "sharp", "product": "mx-m905", "cpes": ["cpe:2.3:h:sharp:mx-m905:-:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "611", "status": "affected"}]}, {"vendor": "sharp", "product": "mx-m6070", "cpes": ["cpe:2.3:h:sharp:mx-m6070:-:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "502", "status": "affected"}]}, {"vendor": "sharp", "product": "mx-m5070", "cpes": ["cpe:2.3:h:sharp:mx-m5070:-:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "502", "status": "affected"}]}, {"vendor": "sharp", "product": "mx-m4070", "cpes": ["cpe:2.3:h:sharp:mx-m4070:-:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "502", "status": "affected"}]}, {"vendor": "sharp", "product": "mx-m3570", "cpes": ["cpe:2.3:h:sharp:mx-m3570:-:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "502", "status": "affected"}]}, {"vendor": "sharp", "product": "mx-m3070", "cpes": ["cpe:2.3:h:sharp:mx-m3070:-:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "502", "status": "affected"}]}, {"vendor": "sharp", "product": "mx-m6050", "cpes": ["cpe:2.3:h:sharp:mx-m6050:-:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "502", "status": "affected"}]}, {"vendor": "sharp", "product": "mx-m5050", "cpes": ["cpe:2.3:h:sharp:mx-m5050:-:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "502", "status": "affected"}]}, {"vendor": "sharp", "product": "mx-m4050", "cpes": ["cpe:2.3:h:sharp:mx-m4050:-:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "502", "status": "affected"}]}, {"vendor": "sharp", "product": "mx-m3550", "cpes": ["cpe:2.3:h:sharp:mx-m3550:-:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "502", "status": "affected"}]}, {"vendor": "sharp", "product": "mx-m3050", "cpes": ["cpe:2.3:h:sharp:mx-m3050:-:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "502", "status": "affected"}]}, {"vendor": "sharp", "product": "mx-m2630", "cpes": ["cpe:2.3:h:sharp:mx-m2630:-:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "502", "status": "affected"}]}, {"vendor": "sharp", "product": "mx-m6070", "cpes": ["cpe:2.3:h:sharp:mx-m6070:-:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "502", "status": "affected"}]}, {"vendor": "sharp", "product": "bp-b550wd", "cpes": ["cpe:2.3:h:sharp:bp-b550wd:-:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "250", "status": "affected"}]}, {"vendor": "sharp", "product": "bp-b540wr", "cpes": ["cpe:2.3:h:sharp:bp-b540wr:-:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "250", "status": "affected"}]}, {"vendor": "sharp", "product": "bp-b547wd", "cpes": ["cpe:2.3:h:sharp:bp-b547wd:-:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "250", "status": "affected"}]}, {"vendor": "sharp", "product": "bp-b537wr", "cpes": ["cpe:2.3:h:sharp:bp-b537wr:-:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "250", "status": "affected"}]}, {"vendor": "sharp", "product": "mx-b455w", "cpes": ["cpe:2.3:h:sharp:mx-b455w:-:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "404", "status": "affected"}]}, {"vendor": "sharp", "product": "mx-b355w", "cpes": ["cpe:2.3:h:sharp:mx-b355w:-:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "404", "status": "affected"}]}, {"vendor": "sharp", "product": "mx-b455wz", "cpes": ["cpe:2.3:h:sharp:mx-b455wz:-:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "404", "status": "affected"}]}, {"vendor": "sharp", "product": "mx-b355wz", "cpes": ["cpe:2.3:h:sharp:mx-b355wz:-:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "404", "status": "affected"}]}, {"vendor": "sharp", "product": "mx-b455wt", "cpes": ["cpe:2.3:h:sharp:mx-b455wt:-:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "404", "status": "affected"}]}, {"vendor": "sharp", "product": "mx-b355wt", "cpes": ["cpe:2.3:h:sharp:mx-b355wt:-:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "404", "status": "affected"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-11-26T16:19:13.648769Z", "id": "CVE-2024-36251", "options": [{"Exploitation": "poc"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-11-26T16:28:15.625Z"}}]}}

{

dataType : CVE_RECORD (string)

dataVersion : 5.1 (string)

cveMetadata : { »

cveId : CVE-2024-36251 (string)

assignerOrgId : ede6fdc4-6654-4307-a26d-3331c018e2ce (string)

state : PUBLISHED (string)

assignerShortName : jpcert (string)

dateReserved : 2024-05-22T09:00:10.181Z (string)

datePublished : 2024-11-26T07:38:24.464Z (string)

dateUpdated : 2024-11-26T16:28:15.625Z (string)

}

containers : { »

cna : { »

affected : [ »

0 : { »

vendor : Sharp Corporation (string)

product : Multiple MFPs (multifunction printers) (string)

versions : [ »

0 : { »

version : See the information provided by Sharp Corporation listed under [References] (string)

status : affected (string)

}

]

}

1 : { »

vendor : Toshiba Tec Corporation (string)

product : Multiple MFPs (multifunction printers) (string)

versions : [ »

0 : { »

version : See the information provided by Toshiba Tec Corporation listed under [References] (string)

status : affected (string)

}

]

}

]

descriptions : [ »

0 : { »

lang : en (string)

value : The web interface of the affected devices process some crafted HTTP requests improperly, leading to a device crash. More precisely, a crafted parameter to billcodedef_sub_sel.html is not processed properly and device-crash happens. As for the details of affected product names, model numbers, and versions, refer to the information provided by the respective vendors listed under [References]. (string)

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

description : Out-of-bounds read (string)

lang : en-US (string)

cweId : CWE-125 (string)

type : CWE (string)

}

]

}

]

references : [ »

0 : { »

url : https://global.sharp/products/copier/info/info_security_2024-05.html (string)

}

1 : { »

url : https://jp.sharp/business/print/information/info_security_2024-05.html (string)

}

2 : { »

url : https://www.toshibatec.com/information/20240531_02.html (string)

}

3 : { »

url : https://www.toshibatec.co.jp/information/20240531_02.html (string)

}

4 : { »

url : https://jvn.jp/en/vu/JVNVU93051062/ (string)

}

5 : { »

url : https://pierrekim.github.io/blog/2024-06-27-sharp-mfp-17-vulnerabilities.html (string)

}

]

metrics : [ »

0 : { »

format : CVSS (string)

scenarios : [ »

0 : { »

lang : en-US (string)

value : GENERAL (string)

}

]

cvssV3_1 : { »

version : 3.1 (string)

baseSeverity : HIGH (string)

baseScore : 7.5 (number)

vectorString : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H (string)

}

]

providerMetadata : { »

orgId : ede6fdc4-6654-4307-a26d-3331c018e2ce (string)

shortName : jpcert (string)

dateUpdated : 2024-11-26T07:38:24.464Z (string)

}

adp : [ »

0 : { »

affected : [ »

0 : { »

vendor : sharp (string)

product : mx-m905 (string)

cpes : [ »

0 : cpe:2.3:h:sharp:mx-m905:-:*:*:*:*:*:*:* (string)

]

defaultStatus : unknown (string)

versions : [ »

0 : { »

version : 611 (string)

status : affected (string)

}

]

}

1 : { »

vendor : sharp (string)

product : mx-m6070 (string)

cpes : [ »

0 : cpe:2.3:h:sharp:mx-m6070:-:*:*:*:*:*:*:* (string)

]

defaultStatus : unknown (string)

versions : [ »

0 : { »

version : 502 (string)

status : affected (string)

}

]

}

2 : { »

vendor : sharp (string)

product : mx-m5070 (string)

cpes : [ »

0 : cpe:2.3:h:sharp:mx-m5070:-:*:*:*:*:*:*:* (string)

]

defaultStatus : unknown (string)

versions : [ »

0 : { »

version : 502 (string)

status : affected (string)

}

]

}

3 : { »

vendor : sharp (string)

product : mx-m4070 (string)

cpes : [ »

0 : cpe:2.3:h:sharp:mx-m4070:-:*:*:*:*:*:*:* (string)

]

defaultStatus : unknown (string)

versions : [ »

0 : { »

version : 502 (string)

status : affected (string)

}

]

}

4 : { »

vendor : sharp (string)

product : mx-m3570 (string)

cpes : [ »

0 : cpe:2.3:h:sharp:mx-m3570:-:*:*:*:*:*:*:* (string)

]

defaultStatus : unknown (string)

versions : [ »

0 : { »

version : 502 (string)

status : affected (string)

}

]

}

5 : { »

vendor : sharp (string)

product : mx-m3070 (string)

cpes : [ »

0 : cpe:2.3:h:sharp:mx-m3070:-:*:*:*:*:*:*:* (string)

]

defaultStatus : unknown (string)

versions : [ »

0 : { »

version : 502 (string)

status : affected (string)

}

]

}

6 : { »

vendor : sharp (string)

product : mx-m6050 (string)

cpes : [ »

0 : cpe:2.3:h:sharp:mx-m6050:-:*:*:*:*:*:*:* (string)

]

defaultStatus : unknown (string)

versions : [ »

0 : { »

version : 502 (string)

status : affected (string)

}

]

}

7 : { »

vendor : sharp (string)

product : mx-m5050 (string)

cpes : [ »

0 : cpe:2.3:h:sharp:mx-m5050:-:*:*:*:*:*:*:* (string)

]

defaultStatus : unknown (string)

versions : [ »

0 : { »

version : 502 (string)

status : affected (string)

}

]

}

8 : { »

vendor : sharp (string)

product : mx-m4050 (string)

cpes : [ »

0 : cpe:2.3:h:sharp:mx-m4050:-:*:*:*:*:*:*:* (string)

]

defaultStatus : unknown (string)

versions : [ »

0 : { »

version : 502 (string)

status : affected (string)

}

]

}

9 : { »

vendor : sharp (string)

product : mx-m3550 (string)

cpes : [ »

0 : cpe:2.3:h:sharp:mx-m3550:-:*:*:*:*:*:*:* (string)

]

defaultStatus : unknown (string)

versions : [ »

0 : { »

version : 502 (string)

status : affected (string)

}

]

}

10 : { »

vendor : sharp (string)

product : mx-m3050 (string)

cpes : [ »

0 : cpe:2.3:h:sharp:mx-m3050:-:*:*:*:*:*:*:* (string)

]

defaultStatus : unknown (string)

versions : [ »

0 : { »

version : 502 (string)

status : affected (string)

}

]

}

11 : { »

vendor : sharp (string)

product : mx-m2630 (string)

cpes : [ »

0 : cpe:2.3:h:sharp:mx-m2630:-:*:*:*:*:*:*:* (string)

]

defaultStatus : unknown (string)

versions : [ »

0 : { »

version : 502 (string)

status : affected (string)

}

]

}

12 : { »

vendor : sharp (string)

product : mx-m6070 (string)

cpes : [ »

0 : cpe:2.3:h:sharp:mx-m6070:-:*:*:*:*:*:*:* (string)

]

defaultStatus : unknown (string)

versions : [ »

0 : { »

version : 502 (string)

status : affected (string)

}

]

}

13 : { »

vendor : sharp (string)

product : bp-b550wd (string)

cpes : [ »

0 : cpe:2.3:h:sharp:bp-b550wd:-:*:*:*:*:*:*:* (string)

]

defaultStatus : unknown (string)

versions : [ »

0 : { »

version : 250 (string)

status : affected (string)

}

]

}

14 : { »

vendor : sharp (string)

product : bp-b540wr (string)

cpes : [ »

0 : cpe:2.3:h:sharp:bp-b540wr:-:*:*:*:*:*:*:* (string)

]

defaultStatus : unknown (string)

versions : [ »

0 : { »

version : 250 (string)

status : affected (string)

}

]

}

15 : { »

vendor : sharp (string)

product : bp-b547wd (string)

cpes : [ »

0 : cpe:2.3:h:sharp:bp-b547wd:-:*:*:*:*:*:*:* (string)

]

defaultStatus : unknown (string)

versions : [ »

0 : { »

version : 250 (string)

status : affected (string)

}

]

}

16 : { »

vendor : sharp (string)

product : bp-b537wr (string)

cpes : [ »

0 : cpe:2.3:h:sharp:bp-b537wr:-:*:*:*:*:*:*:* (string)

]

defaultStatus : unknown (string)

versions : [ »

0 : { »

version : 250 (string)

status : affected (string)

}

]

}

17 : { »

vendor : sharp (string)

product : mx-b455w (string)

cpes : [ »

0 : cpe:2.3:h:sharp:mx-b455w:-:*:*:*:*:*:*:* (string)

]

defaultStatus : unknown (string)

versions : [ »

0 : { »

version : 404 (string)

status : affected (string)

}

]

}

18 : { »

vendor : sharp (string)

product : mx-b355w (string)

cpes : [ »

0 : cpe:2.3:h:sharp:mx-b355w:-:*:*:*:*:*:*:* (string)

]

defaultStatus : unknown (string)

versions : [ »

0 : { »

version : 404 (string)

status : affected (string)

}

]

}

19 : { »

vendor : sharp (string)

product : mx-b455wz (string)

cpes : [ »

0 : cpe:2.3:h:sharp:mx-b455wz:-:*:*:*:*:*:*:* (string)

]

defaultStatus : unknown (string)

versions : [ »

0 : { »

version : 404 (string)

status : affected (string)

}

]

}

20 : { »

vendor : sharp (string)

product : mx-b355wz (string)

cpes : [ »

0 : cpe:2.3:h:sharp:mx-b355wz:-:*:*:*:*:*:*:* (string)

]

defaultStatus : unknown (string)

versions : [ »

0 : { »

version : 404 (string)

status : affected (string)

}

]

}

21 : { »

vendor : sharp (string)

product : mx-b455wt (string)

cpes : [ »

0 : cpe:2.3:h:sharp:mx-b455wt:-:*:*:*:*:*:*:* (string)

]

defaultStatus : unknown (string)

versions : [ »

0 : { »

version : 404 (string)

status : affected (string)

}

]

}

22 : { »

vendor : sharp (string)

product : mx-b355wt (string)

cpes : [ »

0 : cpe:2.3:h:sharp:mx-b355wt:-:*:*:*:*:*:*:* (string)

]

defaultStatus : unknown (string)

versions : [ »

0 : { »

version : 404 (string)

status : affected (string)

}

]

}

]

metrics : [ »

0 : { »

other : { »

type : ssvc (string)

content : { »

timestamp : 2024-11-26T16:19:13.648769Z (string)

id : CVE-2024-36251 (string)

options : [ »

0 : { »

Exploitation : poc (string)

}

1 : { »

Automatable : yes (string)

}

2 : { »

Technical Impact : partial (string)

}

]

role : CISA Coordinator (string)

version : 2.0.3 (string)

}

]

title : CISA ADP Vulnrichment (string)

providerMetadata : { »

orgId : 134c704f-9b21-4f2e-91b3-4a467353bcc0 (string)

shortName : CISA-ADP (string)

dateUpdated : 2024-11-26T16:28:15.625Z (string)

}

]

}

Show plain JSON

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-36251", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-11-26T16:19:13.648769Z"}}}], "affected": [{"cpes": ["cpe:2.3:h:sharp:mx-m905:-:*:*:*:*:*:*:*"], "vendor": "sharp", "product": "mx-m905", "versions": [{"status": "affected", "version": "611"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:h:sharp:mx-m6070:-:*:*:*:*:*:*:*"], "vendor": "sharp", "product": "mx-m6070", "versions": [{"status": "affected", "version": "502"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:h:sharp:mx-m5070:-:*:*:*:*:*:*:*"], "vendor": "sharp", "product": "mx-m5070", "versions": [{"status": "affected", "version": "502"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:h:sharp:mx-m4070:-:*:*:*:*:*:*:*"], "vendor": "sharp", "product": "mx-m4070", "versions": [{"status": "affected", "version": "502"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:h:sharp:mx-m3570:-:*:*:*:*:*:*:*"], "vendor": "sharp", "product": "mx-m3570", "versions": [{"status": "affected", "version": "502"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:h:sharp:mx-m3070:-:*:*:*:*:*:*:*"], "vendor": "sharp", "product": "mx-m3070", "versions": [{"status": "affected", "version": "502"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:h:sharp:mx-m6050:-:*:*:*:*:*:*:*"], "vendor": "sharp", "product": "mx-m6050", "versions": [{"status": "affected", "version": "502"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:h:sharp:mx-m5050:-:*:*:*:*:*:*:*"], "vendor": "sharp", "product": "mx-m5050", "versions": [{"status": "affected", "version": "502"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:h:sharp:mx-m4050:-:*:*:*:*:*:*:*"], "vendor": "sharp", "product": "mx-m4050", "versions": [{"status": "affected", "version": "502"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:h:sharp:mx-m3550:-:*:*:*:*:*:*:*"], "vendor": "sharp", "product": "mx-m3550", "versions": [{"status": "affected", "version": "502"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:h:sharp:mx-m3050:-:*:*:*:*:*:*:*"], "vendor": "sharp", "product": "mx-m3050", "versions": [{"status": "affected", "version": "502"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:h:sharp:mx-m2630:-:*:*:*:*:*:*:*"], "vendor": "sharp", "product": "mx-m2630", "versions": [{"status": "affected", "version": "502"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:h:sharp:mx-m6070:-:*:*:*:*:*:*:*"], "vendor": "sharp", "product": "mx-m6070", "versions": [{"status": "affected", "version": "502"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:h:sharp:bp-b550wd:-:*:*:*:*:*:*:*"], "vendor": "sharp", "product": "bp-b550wd", "versions": [{"status": "affected", "version": "250"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:h:sharp:bp-b540wr:-:*:*:*:*:*:*:*"], "vendor": "sharp", "product": "bp-b540wr", "versions": [{"status": "affected", "version": "250"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:h:sharp:bp-b547wd:-:*:*:*:*:*:*:*"], "vendor": "sharp", "product": "bp-b547wd", "versions": [{"status": "affected", "version": "250"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:h:sharp:bp-b537wr:-:*:*:*:*:*:*:*"], "vendor": "sharp", "product": "bp-b537wr", "versions": [{"status": "affected", "version": "250"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:h:sharp:mx-b455w:-:*:*:*:*:*:*:*"], "vendor": "sharp", "product": "mx-b455w", "versions": [{"status": "affected", "version": "404"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:h:sharp:mx-b355w:-:*:*:*:*:*:*:*"], "vendor": "sharp", "product": "mx-b355w", "versions": [{"status": "affected", "version": "404"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:h:sharp:mx-b455wz:-:*:*:*:*:*:*:*"], "vendor": "sharp", "product": "mx-b455wz", "versions": [{"status": "affected", "version": "404"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:h:sharp:mx-b355wz:-:*:*:*:*:*:*:*"], "vendor": "sharp", "product": "mx-b355wz", "versions": [{"status": "affected", "version": "404"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:h:sharp:mx-b455wt:-:*:*:*:*:*:*:*"], "vendor": "sharp", "product": "mx-b455wt", "versions": [{"status": "affected", "version": "404"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:h:sharp:mx-b355wt:-:*:*:*:*:*:*:*"], "vendor": "sharp", "product": "mx-b355wt", "versions": [{"status": "affected", "version": "404"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-11-26T16:28:04.401Z"}}], "cna": {"metrics": [{"format": "CVSS", "cvssV3_1": {"version": "3.1", "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}, "scenarios": [{"lang": "en-US", "value": "GENERAL"}]}], "affected": [{"vendor": "Sharp Corporation", "product": "Multiple MFPs (multifunction printers)", "versions": [{"status": "affected", "version": "See the information provided by Sharp Corporation listed under [References]"}]}, {"vendor": "Toshiba Tec Corporation", "product": "Multiple MFPs (multifunction printers)", "versions": [{"status": "affected", "version": "See the information provided by Toshiba Tec Corporation listed under [References]"}]}], "references": [{"url": "https://global.sharp/products/copier/info/info_security_2024-05.html"}, {"url": "https://jp.sharp/business/print/information/info_security_2024-05.html"}, {"url": "https://www.toshibatec.com/information/20240531_02.html"}, {"url": "https://www.toshibatec.co.jp/information/20240531_02.html"}, {"url": "https://jvn.jp/en/vu/JVNVU93051062/"}, {"url": "https://pierrekim.github.io/blog/2024-06-27-sharp-mfp-17-vulnerabilities.html"}], "descriptions": [{"lang": "en", "value": "The web interface of the affected devices process some crafted HTTP requests improperly, leading to a device crash. More precisely, a crafted parameter to billcodedef_sub_sel.html is not processed properly and device-crash happens. As for the details of affected product names, model numbers, and versions, refer to the information provided by the respective vendors listed under [References]."}], "problemTypes": [{"descriptions": [{"lang": "en-US", "type": "CWE", "cweId": "CWE-125", "description": "Out-of-bounds read"}]}], "providerMetadata": {"orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce", "shortName": "jpcert", "dateUpdated": "2024-11-26T07:38:24.464Z"}}}, "cveMetadata": {"cveId": "CVE-2024-36251", "state": "PUBLISHED", "dateUpdated": "2024-11-26T16:28:15.625Z", "dateReserved": "2024-05-22T09:00:10.181Z", "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce", "datePublished": "2024-11-26T07:38:24.464Z", "assignerShortName": "jpcert"}, "dataVersion": "5.1"}

{

dataType : CVE_RECORD (string)

containers : { »

adp : [ »

0 : { »

title : CISA ADP Vulnrichment (string)

metrics : [ »

0 : { »

other : { »

type : ssvc (string)

content : { »

id : CVE-2024-36251 (string)

role : CISA Coordinator (string)

options : [ »

0 : { »

Exploitation : poc (string)

}

1 : { »

Automatable : yes (string)

}

2 : { »

Technical Impact : partial (string)

}

]

version : 2.0.3 (string)

timestamp : 2024-11-26T16:19:13.648769Z (string)

}

]

affected : [ »

0 : { »

cpes : [ »

0 : cpe:2.3:h:sharp:mx-m905:-:*:*:*:*:*:*:* (string)

]

vendor : sharp (string)

product : mx-m905 (string)

versions : [ »

0 : { »

status : affected (string)

version : 611 (string)

}

]

defaultStatus : unknown (string)

}

1 : { »

cpes : [ »

0 : cpe:2.3:h:sharp:mx-m6070:-:*:*:*:*:*:*:* (string)

]

vendor : sharp (string)

product : mx-m6070 (string)

versions : [ »

0 : { »

status : affected (string)

version : 502 (string)

}

]

defaultStatus : unknown (string)

}

2 : { »

cpes : [ »

0 : cpe:2.3:h:sharp:mx-m5070:-:*:*:*:*:*:*:* (string)

]

vendor : sharp (string)

product : mx-m5070 (string)

versions : [ »

0 : { »

status : affected (string)

version : 502 (string)

}

]

defaultStatus : unknown (string)

}

3 : { »

cpes : [ »

0 : cpe:2.3:h:sharp:mx-m4070:-:*:*:*:*:*:*:* (string)

]

vendor : sharp (string)

product : mx-m4070 (string)

versions : [ »

0 : { »

status : affected (string)

version : 502 (string)

}

]

defaultStatus : unknown (string)

}

4 : { »

cpes : [ »

0 : cpe:2.3:h:sharp:mx-m3570:-:*:*:*:*:*:*:* (string)

]

vendor : sharp (string)

product : mx-m3570 (string)

versions : [ »

0 : { »

status : affected (string)

version : 502 (string)

}

]

defaultStatus : unknown (string)

}

5 : { »

cpes : [ »

0 : cpe:2.3:h:sharp:mx-m3070:-:*:*:*:*:*:*:* (string)

]

vendor : sharp (string)

product : mx-m3070 (string)

versions : [ »

0 : { »

status : affected (string)

version : 502 (string)

}

]

defaultStatus : unknown (string)

}

6 : { »

cpes : [ »

0 : cpe:2.3:h:sharp:mx-m6050:-:*:*:*:*:*:*:* (string)

]

vendor : sharp (string)

product : mx-m6050 (string)

versions : [ »

0 : { »

status : affected (string)

version : 502 (string)

}

]

defaultStatus : unknown (string)

}

7 : { »

cpes : [ »

0 : cpe:2.3:h:sharp:mx-m5050:-:*:*:*:*:*:*:* (string)

]

vendor : sharp (string)

product : mx-m5050 (string)

versions : [ »

0 : { »

status : affected (string)

version : 502 (string)

}

]

defaultStatus : unknown (string)

}

8 : { »

cpes : [ »

0 : cpe:2.3:h:sharp:mx-m4050:-:*:*:*:*:*:*:* (string)

]

vendor : sharp (string)

product : mx-m4050 (string)

versions : [ »

0 : { »

status : affected (string)

version : 502 (string)

}

]

defaultStatus : unknown (string)

}

9 : { »

cpes : [ »

0 : cpe:2.3:h:sharp:mx-m3550:-:*:*:*:*:*:*:* (string)

]

vendor : sharp (string)

product : mx-m3550 (string)

versions : [ »

0 : { »

status : affected (string)

version : 502 (string)

}

]

defaultStatus : unknown (string)

}

10 : { »

cpes : [ »

0 : cpe:2.3:h:sharp:mx-m3050:-:*:*:*:*:*:*:* (string)

]

vendor : sharp (string)

product : mx-m3050 (string)

versions : [ »

0 : { »

status : affected (string)

version : 502 (string)

}

]

defaultStatus : unknown (string)

}

11 : { »

cpes : [ »

0 : cpe:2.3:h:sharp:mx-m2630:-:*:*:*:*:*:*:* (string)

]

vendor : sharp (string)

product : mx-m2630 (string)

versions : [ »

0 : { »

status : affected (string)

version : 502 (string)

}

]

defaultStatus : unknown (string)

}

12 : { »

cpes : [ »

0 : cpe:2.3:h:sharp:mx-m6070:-:*:*:*:*:*:*:* (string)

]

vendor : sharp (string)

product : mx-m6070 (string)

versions : [ »

0 : { »

status : affected (string)

version : 502 (string)

}

]

defaultStatus : unknown (string)

}

13 : { »

cpes : [ »

0 : cpe:2.3:h:sharp:bp-b550wd:-:*:*:*:*:*:*:* (string)

]

vendor : sharp (string)

product : bp-b550wd (string)

versions : [ »

0 : { »

status : affected (string)

version : 250 (string)

}

]

defaultStatus : unknown (string)

}

14 : { »

cpes : [ »

0 : cpe:2.3:h:sharp:bp-b540wr:-:*:*:*:*:*:*:* (string)

]

vendor : sharp (string)

product : bp-b540wr (string)

versions : [ »

0 : { »

status : affected (string)

version : 250 (string)

}

]

defaultStatus : unknown (string)

}

15 : { »

cpes : [ »

0 : cpe:2.3:h:sharp:bp-b547wd:-:*:*:*:*:*:*:* (string)

]

vendor : sharp (string)

product : bp-b547wd (string)

versions : [ »

0 : { »

status : affected (string)

version : 250 (string)

}

]

defaultStatus : unknown (string)

}

16 : { »

cpes : [ »

0 : cpe:2.3:h:sharp:bp-b537wr:-:*:*:*:*:*:*:* (string)

]

vendor : sharp (string)

product : bp-b537wr (string)

versions : [ »

0 : { »

status : affected (string)

version : 250 (string)

}

]

defaultStatus : unknown (string)

}

17 : { »

cpes : [ »

0 : cpe:2.3:h:sharp:mx-b455w:-:*:*:*:*:*:*:* (string)

]

vendor : sharp (string)

product : mx-b455w (string)

versions : [ »

0 : { »

status : affected (string)

version : 404 (string)

}

]

defaultStatus : unknown (string)

}

18 : { »

cpes : [ »

0 : cpe:2.3:h:sharp:mx-b355w:-:*:*:*:*:*:*:* (string)

]

vendor : sharp (string)

product : mx-b355w (string)

versions : [ »

0 : { »

status : affected (string)

version : 404 (string)

}

]

defaultStatus : unknown (string)

}

19 : { »

cpes : [ »

0 : cpe:2.3:h:sharp:mx-b455wz:-:*:*:*:*:*:*:* (string)

]

vendor : sharp (string)

product : mx-b455wz (string)

versions : [ »

0 : { »

status : affected (string)

version : 404 (string)

}

]

defaultStatus : unknown (string)

}

20 : { »

cpes : [ »

0 : cpe:2.3:h:sharp:mx-b355wz:-:*:*:*:*:*:*:* (string)

]

vendor : sharp (string)

product : mx-b355wz (string)

versions : [ »

0 : { »

status : affected (string)

version : 404 (string)

}

]

defaultStatus : unknown (string)

}

21 : { »

cpes : [ »

0 : cpe:2.3:h:sharp:mx-b455wt:-:*:*:*:*:*:*:* (string)

]

vendor : sharp (string)

product : mx-b455wt (string)

versions : [ »

0 : { »

status : affected (string)

version : 404 (string)

}

]

defaultStatus : unknown (string)

}

22 : { »

cpes : [ »

0 : cpe:2.3:h:sharp:mx-b355wt:-:*:*:*:*:*:*:* (string)

]

vendor : sharp (string)

product : mx-b355wt (string)

versions : [ »

0 : { »

status : affected (string)

version : 404 (string)

}

]

defaultStatus : unknown (string)

}

]

providerMetadata : { »

orgId : 134c704f-9b21-4f2e-91b3-4a467353bcc0 (string)

shortName : CISA-ADP (string)

dateUpdated : 2024-11-26T16:28:04.401Z (string)

}

]

cna : { »

metrics : [ »

0 : { »

format : CVSS (string)

cvssV3_1 : { »

version : 3.1 (string)

baseScore : 7.5 (number)

baseSeverity : HIGH (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H (string)

}

scenarios : [ »

0 : { »

lang : en-US (string)

value : GENERAL (string)

}

]

}

]

affected : [ »

0 : { »

vendor : Sharp Corporation (string)

product : Multiple MFPs (multifunction printers) (string)

versions : [ »

0 : { »

status : affected (string)

version : See the information provided by Sharp Corporation listed under [References] (string)

}

]

}

1 : { »

vendor : Toshiba Tec Corporation (string)

product : Multiple MFPs (multifunction printers) (string)

versions : [ »

0 : { »

status : affected (string)

version : See the information provided by Toshiba Tec Corporation listed under [References] (string)

}

]

}

]

references : [ »

0 : { »

url : https://global.sharp/products/copier/info/info_security_2024-05.html (string)

}

1 : { »

url : https://jp.sharp/business/print/information/info_security_2024-05.html (string)

}

2 : { »

url : https://www.toshibatec.com/information/20240531_02.html (string)

}

3 : { »

url : https://www.toshibatec.co.jp/information/20240531_02.html (string)

}

4 : { »

url : https://jvn.jp/en/vu/JVNVU93051062/ (string)

}

5 : { »

url : https://pierrekim.github.io/blog/2024-06-27-sharp-mfp-17-vulnerabilities.html (string)

}

]

descriptions : [ »

0 : { »

lang : en (string)

value : The web interface of the affected devices process some crafted HTTP requests improperly, leading to a device crash. More precisely, a crafted parameter to billcodedef_sub_sel.html is not processed properly and device-crash happens. As for the details of affected product names, model numbers, and versions, refer to the information provided by the respective vendors listed under [References]. (string)

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

lang : en-US (string)

type : CWE (string)

cweId : CWE-125 (string)

description : Out-of-bounds read (string)

}

]

}

]

providerMetadata : { »

orgId : ede6fdc4-6654-4307-a26d-3331c018e2ce (string)

shortName : jpcert (string)

dateUpdated : 2024-11-26T07:38:24.464Z (string)

}

cveMetadata : { »

cveId : CVE-2024-36251 (string)

state : PUBLISHED (string)

dateUpdated : 2024-11-26T16:28:15.625Z (string)

dateReserved : 2024-05-22T09:00:10.181Z (string)

assignerOrgId : ede6fdc4-6654-4307-a26d-3331c018e2ce (string)

datePublished : 2024-11-26T07:38:24.464Z (string)

assignerShortName : jpcert (string)

}

dataVersion : 5.1 (string)

}

Show plain JSON

{"descriptions": [{"lang": "en", "value": "The web interface of the affected devices process some crafted HTTP requests improperly, leading to a device crash. More precisely, a crafted parameter to billcodedef_sub_sel.html is not processed properly and device-crash happens. As for the details of affected product names, model numbers, and versions, refer to the information provided by the respective vendors listed under [References]."}], "id": "CVE-2024-36251", "lastModified": "2024-11-26T08:15:06.760", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "vultures@jpcert.or.jp", "type": "Secondary"}]}, "published": "2024-11-26T08:15:06.760", "references": [{"source": "vultures@jpcert.or.jp", "url": "https://global.sharp/products/copier/info/info_security_2024-05.html"}, {"source": "vultures@jpcert.or.jp", "url": "https://jp.sharp/business/print/information/info_security_2024-05.html"}, {"source": "vultures@jpcert.or.jp", "url": "https://jvn.jp/en/vu/JVNVU93051062/"}, {"source": "vultures@jpcert.or.jp", "url": "https://pierrekim.github.io/blog/2024-06-27-sharp-mfp-17-vulnerabilities.html"}, {"source": "vultures@jpcert.or.jp", "url": "https://www.toshibatec.co.jp/information/20240531_02.html"}, {"source": "vultures@jpcert.or.jp", "url": "https://www.toshibatec.com/information/20240531_02.html"}], "sourceIdentifier": "vultures@jpcert.or.jp", "vulnStatus": "Received", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-125"}], "source": "vultures@jpcert.or.jp", "type": "Primary"}]}

{

descriptions : [ »

0 : { »

lang : en (string)

value : The web interface of the affected devices process some crafted HTTP requests improperly, leading to a device crash. More precisely, a crafted parameter to billcodedef_sub_sel.html is not processed properly and device-crash happens. As for the details of affected product names, model numbers, and versions, refer to the information provided by the respective vendors listed under [References]. (string)

}

]

id : CVE-2024-36251 (string)

lastModified : 2024-11-26T08:15:06.760 (string)

metrics : { »

cvssMetricV31 : [ »

0 : { »

cvssData : { »

attackComplexity : LOW (string)

attackVector : NETWORK (string)

availabilityImpact : HIGH (string)

baseScore : 7.5 (number)

baseSeverity : HIGH (string)

confidentialityImpact : NONE (string)

integrityImpact : NONE (string)

privilegesRequired : NONE (string)

scope : UNCHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H (string)

version : 3.1 (string)

}

exploitabilityScore : 3.9 (number)

impactScore : 3.6 (number)

source : vultures@jpcert.or.jp (string)

type : Secondary (string)

}

]

}

published : 2024-11-26T08:15:06.760 (string)

references : [ »

0 : { »

source : vultures@jpcert.or.jp (string)

url : https://global.sharp/products/copier/info/info_security_2024-05.html (string)

}

1 : { »

source : vultures@jpcert.or.jp (string)

url : https://jp.sharp/business/print/information/info_security_2024-05.html (string)

}

2 : { »

source : vultures@jpcert.or.jp (string)

url : https://jvn.jp/en/vu/JVNVU93051062/ (string)

}

3 : { »

source : vultures@jpcert.or.jp (string)

url : https://pierrekim.github.io/blog/2024-06-27-sharp-mfp-17-vulnerabilities.html (string)

}

4 : { »

source : vultures@jpcert.or.jp (string)

url : https://www.toshibatec.co.jp/information/20240531_02.html (string)

}

5 : { »

source : vultures@jpcert.or.jp (string)

url : https://www.toshibatec.com/information/20240531_02.html (string)

}

]

sourceIdentifier : vultures@jpcert.or.jp (string)

vulnStatus : Received (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-125 (string)

}

]

source : vultures@jpcert.or.jp (string)

type : Primary (string)

}

]

}

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Exploitation poc

Automatable yes

Technical Impact partial

Affected Vendors & Products

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Exploitation poc

Automatable yes

Technical Impact partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object