Vulnerabilities in projectors
CVE Identifier: CVE-2024-7011
Description
The following Projectors allows an attacker Denial of Service (DoS).
Models
NP-CB4500UL, NP-CB4500WL, NP-CB4700UL, NP-P525UL, NP-P525UL+, NP-P525ULG, NP-P525WL, NP-P525WL+, NP-P525WLG
NP-CG6500UL, NP-CG6500WL, NP-CG6700UL, NP-P605UL, NP-P605UL+, NP-P605ULG
NP-CA4120X, NP-CA4160W, NP-CA4160X, NP-CA4200U, NP-CA4200W, NP-CA4202W, NP-CA4260X, NP-CA4300X, NP-CA4355X, NP-CD2100U, NP-CD2120X, NP-CD2300X, NP-CR2100X, NP-CR2170W, NP-CR2170X, NP-CR2200U, NP-CR2200W, NP-CR2280X, NP-CR2310X, NP-CR2350X, NP-MC302XG, NP-MC332WG, NP-MC342XG, NP-MC372X, NP-MC372XG, NP-MC382W, NP-MC382WG, NP-MC422XG, NP-ME342UG, NP-ME372W, NP-ME372WG, NP-ME382U, NP-ME382UG, NP-ME402X, NP-ME402XG
NP-CB4500XL, NP-CG6400UL, NP-CG6400WL, NP-CG6500XL, NP-PE455UL, NP-PE455ULG, NP-PE455WL, NP-PE455WLG, NP-PE505XLG
NP-CB4600U, NP-CF6600U, NP-P474U, NP-P554U, NP-P554U+, NP-P554UG
NP-CG6600UL, NP-P547UL, NP-P547ULG, NP-P607UL+, NP-P627UL, NP-P627UL+, NP-P627ULG
NP-PV710UL-B, NP-PV710UL-B1, NP-PV710UL-W, NP-PV710UL-W+, NP-PV710UL-W1, NP-PV800UL-B, NP-PV800UL-B+, NP-PV800UL-B1, NP-PV800UL-W, NP-PV800UL-W+, NP-PV800UL-W1
NP-CA4200X, NP-CA4265X, NP-CA4300U, NP-CA4300W, NP-CA4305X, NP-CA4400X, NP-CD2125X, NP-CD2200W, NP-CD2300U, NP-CD2310X, NP-CR2105X, NP-CR2200X, NP-CR2205W, NP-CR2300U, NP-CR2300W, NP-CR2315X, NP-CR2400X, NP-MC333XG, NP-MC363XG, NP-MC423W, NP-MC423WG, NP-MC453X, NP-MC453X, NP-MC453XG, NP-ME383WG, NP-ME403U, NP-ME403UG, NP-ME423W, NP-ME423WG, NP-ME453X, NP-ME453XG
NP-CB4400USL, NP-CB4400WSL, NP-CB4510UL, NP-CB4510WL, NP-CB4510XL, NP-CB4550USL, NP-CB6700UL, NP-CG6510UL, NP-PE456USL, NP-PE456USLG, NP-PE456WSLG, NP-PE506UL, NP-PE506ULG, NP-PE506WL, NP-PE506WLG
Workaround
Apply following workaround to avoid the effects of this vulnerability.
- Update the projector firmware (contact us)
- Use the product only in a safe intranet protected by a firewall and do not connect the product to the Internet.
The above workaround prevent illegal access to the product.
Reference
Acknowledgements
Thanks to Mr. JP Hofmeyr of the Southern Metropolitan Cemeteries Trust for reporting this vulnerability.