CVE-2023-7077

CRITICAL
Published Feb 5, 2024 Modified Dec 8, 2025 CWE-22

Description

Sharp NEC Displays (P403, P463, P553, P703, P801, X554UN, X464UN, X554UNS, X464UNV, X474HB, X464UNS, X554UNV, X555UNS, X555UNV, X754HB, X554HB, E705, E805, E905, UN551S, UN551VS, X551UHD, X651UHD, X841UHD, X981UHD, MD551C8) allows an attacker execute remote code by sending unintended parameters in http request.

Is your site exposed to CVE-2023-7077?

Run a free security scan — no signup, results in seconds.

CVSS v3.1 Score

9.8
CRITICAL
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Weakness Type (CWE)

CWE-22 Path Traversal

Affected Products

Vendor Product
sharp nec_e705_firmware
sharp nec_e705
sharp nec_e805_firmware
sharp nec_e805
sharp nec_e905_firmware
sharp nec_e905
sharp nec_md551c8_firmware
sharp nec_md551c8
sharp nec_p403_firmware
sharp nec_p403
sharp nec_p463_firmware
sharp nec_p463
sharp nec_p553_firmware
sharp nec_p553
sharp nec_p703_firmware
sharp nec_p703
sharp nec_p801_firmware
sharp nec_p801
sharp nec_un551s_firmware
sharp nec_un551s
sharp nec_un551vs_firmware
sharp nec_un551vs
sharp nec_x464un_firmware
sharp nec_x464un
sharp nec_x464uns_firmware
sharp nec_x464uns
sharp nec_x464unv_firmware
sharp nec_x464unv
sharp nec_x474hb_firmware
sharp nec_x474hb
sharp nec_x551uhd_firmware
sharp nec_x551uhd
sharp nec_x554hb_firmware
sharp nec_x554hb
sharp nec_x554un_firmware
sharp nec_x554un
sharp nec_x554uns_firmware
sharp nec_x554uns
sharp nec_x554unv_firmware
sharp nec_x554unv
sharp nec_x555uns_firmware
sharp nec_x555uns
sharp nec_x555unv_firmware
sharp nec_x555unv
sharp nec_x651uhd_firmware
sharp nec_x651uhd
sharp nec_x754hb_firmware
sharp nec_x754hb
sharp nec_x841uhd_firmware
sharp nec_x841uhd
sharp nec_x981uhd_firmware
sharp nec_x981uhd

References

Frequently Asked Questions

What is CVE-2023-7077? +
Sharp NEC Displays (P403, P463, P553, P703, P801, X554UN, X464UN, X554UNS, X464UNV, X474HB, X464UNS, X554UNV, X555UNS, X555UNV, X754HB, X554HB, E705, E805, E905, UN551S, UN551VS, X551UHD, X651UHD, X841UHD, X981UHD, MD551C8) allows an attacker execute remote code by sending unintended parameters in http request. It has a CVSS v3.1 base score of 9.8 (CRITICAL).
How severe is CVE-2023-7077? +
CVE-2023-7077 has a CVSS v3.1 score of 9.8 out of 10, rated CRITICAL. This is a critical vulnerability that should be patched immediately.
What products are affected by CVE-2023-7077? +
CVE-2023-7077 affects products from sharp, specifically: nec_e705, nec_e705_firmware, nec_e805, nec_e805_firmware, nec_e905, nec_e905_firmware, nec_md551c8, nec_md551c8_firmware, nec_p403, nec_p403_firmware, nec_p463, nec_p463_firmware, nec_p553, nec_p553_firmware, nec_p703, nec_p703_firmware, nec_p801, nec_p801_firmware, nec_un551s, nec_un551s_firmware, nec_un551vs, nec_un551vs_firmware, nec_x464un, nec_x464un_firmware, nec_x464uns, nec_x464uns_firmware, nec_x464unv, nec_x464unv_firmware, nec_x474hb, nec_x474hb_firmware, nec_x551uhd, nec_x551uhd_firmware, nec_x554hb, nec_x554hb_firmware, nec_x554un, nec_x554un_firmware, nec_x554uns, nec_x554uns_firmware, nec_x554unv, nec_x554unv_firmware, nec_x555uns, nec_x555uns_firmware, nec_x555unv, nec_x555unv_firmware, nec_x651uhd, nec_x651uhd_firmware, nec_x754hb, nec_x754hb_firmware, nec_x841uhd, nec_x841uhd_firmware, nec_x981uhd, nec_x981uhd_firmware. Check the affected products table above for specific version ranges.
How do I check if I'm vulnerable to CVE-2023-7077? +
You can use Secably's free Website Scanner to check your website for known vulnerabilities. For infrastructure scanning, use the Port Scanner to identify exposed services that may be affected. Check the vendor advisories linked above for specific patch and version information.

Related Vulnerabilities

Don't wait for an exploit

Scan your website for vulnerabilities like CVE-2023-7077 — free, no signup required.