MidnightBSD

Advisories for nec

CVE-1999-0009 HIGH

Inverse query buffer overflow in BIND 4.9 and BIND 8 Releases.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
ibm aix 4.1.3
ibm aix 4.2.1
sgi irix 4.0.5_ipr
sgi irix 5.1.1
sgi irix 5.0
bsdi bsd_os 2.0.1
sun sunos -
ibm aix 4.1.2
sgi irix 3.3.1
ibm aix 4.1.5
sgi irix 4.0.1t
sgi irix 5.1
data_general dg_ux 5.4_4.1
sgi irix 4.0.3
sgi irix 4.0.4t
sgi irix 3.3.2
sun sunos 5.3
ibm aix 4.1
ibm aix 4.2
sgi irix 4.0.2
sgi irix 6.2
netbsd netbsd 1.2.1
caldera openlinux 1.0
sun sunos 5.5
sgi irix 4.0.1
sgi irix 4.0.5
ibm aix 4.3
sun sunos 5.4
sgi irix 6.1
sco unixware 2.1
isc bind 4.9.6
netbsd netbsd 1.1
sgi irix 5.0.1
ibm aix 4.1.1
data_general dg_ux 5.4_3.0
redhat linux 5.0
sgi irix 6.0
sgi irix 4.0.5_iop
sun solaris 2.5.1
sun sunos 5.5.1
sgi irix 3.2
sun solaris 2.6
sgi irix 5.2
redhat linux 4.0
sco unixware 7.0
sgi irix 4.0.5d
sgi irix 4.0.5f
sgi irix 4.0.5h
isc bind 8.1.1
ibm aix 4.1.4
sgi irix 4.0.4b
sgi irix 5.3
netbsd netbsd 1.2
sgi irix 4.0
sun solaris 2.5
redhat linux 4.2
isc bind 8.1
nec asl_ux_4800 64
sco open_desktop 5.0
data_general dg_ux 5.4_4.11
sgi irix 3.3.3
bsdi bsd_os 2.1
sgi irix 4.0.5a
sco open_desktop 3.0
sgi irix 4.0.5e
sgi irix 4.0.5g
netbsd netbsd 1.3
sgi irix 4.0.4
bsdi bsd_os 2.0
data_general dg_ux 5.4_3.1
sgi irix 3.3
netbsd netbsd 1.0
sgi irix 6.3
redhat linux 4.1
netbsd netbsd 1.3.1
CVE-1999-0010 MEDIUM

Denial of Service vulnerability in BIND 8 Releases via maliciously formatted DNS messages.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
sun sunos 5.5.1
data_general dg_ux y2k_patchr4.11mu05
sco unixware 7.0
data_general dg_ux y2k_patchr4.20mu02
nec asl_ux_4800 13
data_general dg_ux y2k_patchr4.12mu03
redhat linux 4.2
nec asl_ux_4800 11
isc bind 4.9
sco openserver 5.0
sun sunos 5.3
ibm aix 4.1
ibm aix 4.2
sco open_desktop 3.0
sun sunos 5.5
ibm aix 4.3
sun sunos 5.6
data_general dg_ux y2k_patchr4.20mu03
sun sunos 5.4
sco unixware 2.1
netbsd netbsd 1.3
data_general dg_ux y2k_patchr4.20mu01
sco unix 3.2v4
redhat linux 5.0
netbsd netbsd 1.3.1
isc bind 8
CVE-1999-0011 HIGH

Denial of Service vulnerabilities in BIND 4.9 and BIND 8 Releases via CNAME record and zone transfer.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,CWE-1067,

Products Affected

Vendor Product Version
sun sunos 5.5.1
data_general dg_ux y2k_patchr4.11mu05
sco unixware 7.0
data_general dg_ux y2k_patchr4.20mu02
nec asl_ux_4800 13
data_general dg_ux y2k_patchr4.12mu03
redhat linux 4.2
nec asl_ux_4800 11
isc bind 4.9
sco openserver 5.0
sun sunos 5.3
ibm aix 4.1
ibm aix 4.2
sco open_desktop 3.0
sun sunos 5.5
ibm aix 4.3
sun sunos 5.6
data_general dg_ux y2k_patchr4.20mu03
sun sunos 5.4
sco unixware 2.1
netbsd netbsd 1.3
data_general dg_ux y2k_patchr4.20mu01
sco unix 3.2v4
redhat linux 5.0
netbsd netbsd 1.3.1
isc bind 8
CVE-1999-0024 MEDIUM

DNS cache poisoning via BIND, by predictable query IDs.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
sun solaris 2.5.1
sco openserver 5.0
sun sunos 5.5.1
bsdi bsd_os 2.1
sun sunos 5.3
ibm aix 4.1
ibm aix 4.2
sco open_desktop 3.0
sun solaris 2.6
sun sunos 5.5
nec ews-ux_v 4.2
sun sunos 5.4
isc bind 4.9.5
sco unixware 2.1
sun solaris 2.4
nec up-ux_v 4.2mp
sco unix 3.2v4
bsdi bsd_os 3.0
sun sunos -
sun solaris 2.5
nec ews-ux_v 4.2mp
isc bind 8.1
nec asl_ux_4800 64
CVE-1999-0040 HIGH

Buffer overflow in Xt library of X Windowing System allows local users to execute commands with root privileges.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
sun solaris 2.5.1
sun sunos 5.5.1
freebsd freebsd 1.1.5.1
hp hp-ux 10.34
hp hp-ux 10.20
freebsd freebsd 2.0
hp hp-ux 10.09
hp hp-ux 9.10
sun solaris 2.4
sun sunos 4.1.3u1
sgi irix 5.0
hp hp-ux 10.10
bsdi bsd_os 2.0.1
nec up-ux_v 4.2mp
ibm aix 3.2
sgi irix 5.3
sun sunos 4.1.4
hp hp-ux 10.24
sgi irix 4.0
sun solaris 2.5
hp hp-ux 9.00
sun sunos 4.1.3
nec ews-ux_v 4.2mp
hp hp-ux 10.30
hp hp-ux 9.01
nec asl_ux_4800 64
bsdi bsd_os 2.1
sun sunos 5.3
ibm aix 4.1
ibm aix 4.2
sgi irix 6.2
sun sunos 5.5
nec ews-ux_v 4.2
sun sunos 5.4
hp hp-ux 10.16
sgi irix 6.1
hp hp-ux 10.00
bsdi bsd_os 2.0
hp hp-ux 10.08
sgi irix 6.4
sgi irix 6.0
hp hp-ux 10.01
sgi irix 6.3
CVE-1999-0043 HIGH

Command execution via shell metachars in INN daemon (innd) 1.5 using "newgroup" and "rmgroup" control messages, and others.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,CWE-78,

Products Affected

Vendor Product Version
bsdi bsd_os 2.1
isc inn 1.4unoff4
nec goah_networksv 2.2
caldera openlinux 1.0
redhat linux 4.0
isc inn 1.4sec
isc inn 1.4unoff3
isc inn 1.5
nec goah_networksv 3.1
netscape news_server 1.1
nec goah_intrasv 1.1
nec goah_networksv 1.2
isc inn 1.4sec2
redhat linux 4.1
CVE-1999-0048 HIGH

Talkd, when given corrupt DNS information, can be used to execute arbitrary commands with root privileges.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
ibm aix 4.1
ibm aix 4.2
nec ews-ux_v *
nec up-ux_v *
ibm aix 3.1
nec asl_ux_4800 *
debian netkit 0.07
CVE-1999-0078 LOW

pcnfsd (aka rpc.pcnfsd) allows local users to change file permissions, or execute arbitrary commands through arguments in the RPC call.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
ibm aix 4.1
ibm aix 4.2
nec up-ux_v *
sun sunos 5.5
ncr mp-ras 3.01
sun sunos 5.4
sco unixware 2.1
ncr mp-ras 2.03
sun sunos 4.1
freebsd freebsd 6.2
ibm aix 3.2
sgi irix 5.3
next nextstep *
hp hp-ux *
ncr mp-ras 3.0
bsdi bsd_os *
sco openserver 5
CVE-1999-0138 HIGH

The suidperl and sperl program do not give up root privileges when changing UIDs back to the original users, allowing root access.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
ibm aix 3.2.5
freebsd freebsd 2.0.5
freebsd freebsd 2.0
ibm aix 4
nec ews-ux_v 4.2
hp hp-ux 8
nec asl_ux_4800 *
digital osf_1 1.3
nec up-ux_v 4.2mp
linux linux_kernel 1.2.0
hp hp-ux 9
linux linux_kernel 2.0
freebsd freebsd 2.1.0
nec ews-ux_v 4.2mp
apple a_ux 3.1.1
hp hp-ux 10
CVE-1999-0208 HIGH

rpc.ypupdated (NIS) allows remote users to execute arbitrary commands.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
ibm aix 3.2
ibm aix 4.1
nec ews-ux_v *
nec up-ux_v *
sgi irix 5.2
nec asl_ux_4800 *
sgi irix 4
sgi irix 5.0
sgi irix 3
sgi irix 5.1
CVE-1999-0868 HIGH

ucbmail allows remote attackers to execute commands via shell metacharacters that are passed to it from INN.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
nec goah_networksv r3.1
isc inn 1.5.1
nec goah_networksv r2.2
nec goah_intrasv r1.1
nec goah_networksv r1.2
redhat linux 4.0
sun sparc *
redhat linux 4.1
netscape news_server 1.1
CVE-1999-1435 HIGH

Buffer overflow in libsocks5 library of Socks 5 (socks5) 1.0r5 allows local users to gain privileges via long environmental variables.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
nec socks_5 1.0r5
CVE-2000-1183 HIGH

Buffer overflow in socks5 server on Linux allows attackers to execute arbitrary commands via a long connection request.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
nec socks_5 1.0r5
CVE-2002-0666 MEDIUM

IPSEC implementations including (1) FreeS/WAN and (2) KAME do not properly calculate the length of authentication data, which allows remote attackers to cause a denial of service (kernel panic) via spoofed, short Encapsulating Security Payload (ESP) packets, which result in integer signedness errors.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
nec bluefire_ix1035_router *
frees_wan frees_wan 1.9.4
frees_wan frees_wan 1.9.1
nec ix2010 *
frees_wan frees_wan 1.9.3
frees_wan frees_wan 1.9.6
global_technology_associates gnat_box_firmware 3.3
netbsd netbsd 1.6
netbsd netbsd 1.5
apple mac_os_x 10.2
frees_wan frees_wan 1.9.2
apple mac_os_x_server 10.2
frees_wan frees_wan 1.9
nec ix1020 *
netbsd netbsd 1.5.1
netbsd netbsd 1.5.2
freebsd freebsd 4.6
netbsd netbsd 1.5.3
frees_wan frees_wan 1.9.5
nec ix1011 *
global_technology_associates gnat_box_firmware 3.2
nec ix1050 *
global_technology_associates gnat_box_firmware 3.1
nec ix1010 *
CVE-2002-2368 HIGH

Multiple buffer overflows in NEC SOCKS5 1.0 r11 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via a long username to (1) the GetString function in proxy.c for the SOCKS5 module or (2) the HandleS4Connection function in proxy.c for the SOCKS4 module.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
nec socks_5 *
CVE-2005-4465 HIGH

The Internet Key Exchange version 1 (IKEv1) implementation in NEC UNIVERGE IX1000, IX2000, and IX3000 allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOTE: due to the lack of details in the advisory, it is unclear which of CVE-2005-3666, CVE-2005-3667, and/or CVE-2005-3668 this issue applies to.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
nec univerge ix2015
nec univerge ix3010
nec univerge ix1011
nec univerge ix1050
nec univerge ix1010
nec univerge ix2010
nec univerge ix1020
nec univerge ix2004
nec univerge ix2003
CVE-2010-1941 HIGH

Unspecified vulnerability in NEC WebSAM DeploymentManager 5.13 and earlier, as used in SigmaSystemCenter 2.1 Update2 and earlier, BladeSystemCenter, ExpressSystemCenter, and VirtualPCCenter 2.2 and earlier, allows remote attackers to cause a denial of service (OS shutdown or restart) via unknown vectors related to Client Service for DPM and crafted packets to port 56010.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
nec virtualpccenter *
nec bladesystemcenter *
nec sigmasystemcenter *
nec websam_deploymentmanager *
nec expresssystemcenter *
CVE-2010-1943 HIGH

Unspecified vulnerability in NEC CapsSuite Small Edition PatchMeister 2.0 Update2 and earlier allows remote attackers to cause a denial of service (OS shutdown or restart) via vectors related to Client Service for PTM and crafted packets to port 56015.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
nec capsuite_patchmeister 2.0
CVE-2011-1323 HIGH

Yamaha RTX, RT, SRT, RTV, RTW, and RTA series routers with firmware 6.x through 10.x, and NEC IP38X series routers with firmware 6.x through 10.x, do not properly handle IP header options, which allows remote attackers to cause a denial of service (device reboot) via a crafted option that triggers access to an invalid memory location.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
yamaha rt103i 4.00.25
yamaha rta55i 4.06.35
yamaha srt100 10.00.22
yamaha rt100i 1.06.15
yamaha rt105e 6.03.04
yamaha rt102i 3.00.42
yamaha rt140p 6.01.09
yamaha rt200i 4.00.25
yamaha rt140p 6.03.11
yamaha rt100i 3.00.23
yamaha rt140f 6.03.25
yamaha rtx1000 7.01.34
yamaha rt200i 4.00.39
yamaha rt103i 4.00.13
yamaha rt300i 6.02.03
yamaha rt200i 3.00.37
yamaha rtx1000 7.00.19
yamaha rt100i 1.02.05
yamaha rt200i 3.00.36
yamaha rtx1000 7.00.16
yamaha rt102i 2.01.07
yamaha rta50i 3.04.47
yamaha rt102i 3.00.30
yamaha rtv700 8.00.31
yamaha rta52i 4.01.17
yamaha rta50i 3.05.42
yamaha rt140f 6.02.16
yamaha rtw65i 5.03.11
yamaha rt107e 8.03.06
yamaha rt103i 4.00.07
yamaha rt80i 2.02.31
yamaha rtx1500 8.03.24
yamaha rt102i 3.00.35
yamaha rt200i 3.00.45
yamaha rt100i 1.04.03
yamaha rt102i 1.06.12
yamaha rtx2000 7.01.26
yamaha rt100i 2.01.07
yamaha rtx1500 8.03.06
yamaha rtx1000 7.00.26
nec ip38x/3000 *
yamaha rt300i 6.01.09
yamaha rt103i 4.00.44
yamaha rt100i 3.00.36
yamaha rt100i 1.07.07
yamaha rt140e 6.02.19
yamaha rtv700 8.00.45
yamaha rt102i 2.02.15
yamaha rt58i 9.01.44
yamaha srt100 10.00.44
yamaha rt140p 6.01.07
yamaha rt200i 2.01.07
yamaha rt100i 2.02.15
yamaha rt80i 2.02.44
yamaha rt103i 4.00.40
yamaha rt105e 6.03.34
yamaha rt105p 6.03.34
yamaha rtx1100 8.03.08
yamaha rt140e 6.03.28
yamaha rt57i 8.00.70
yamaha rtx2000 7.00.16
yamaha rt250i 8.02.40
yamaha rt103i 4.00.36
yamaha srt100 10.00.46
yamaha rta52i 4.01.09
yamaha rt140i 6.02.04
yamaha rt140p 6.03.04
yamaha rta52i 4.01.11
yamaha rt107e 8.03.24
yamaha rt200i 2.01.19
yamaha rt200i 3.00.33
yamaha rt100i 1.05.13
nec ip38x/1100 *
nec ip38x/107e *
yamaha rt103i 4.00.10
yamaha rtx1100 8.03.75
yamaha rt105i 6.03.18
yamaha rt140e 6.03.34
nec ip38x/140 *
yamaha rt100i 3.00.30
yamaha rt105i 6.03.33
yamaha rt200i 2.02.15
yamaha rtx3000 9.00.24
yamaha rt102i 2.01.21
yamaha rt140f 6.01.09
yamaha rtx1100 8.03.24
yamaha rt200i 4.00.33
yamaha rt140p 6.03.25
yamaha rt105i 6.02.19
yamaha rtx2000 7.01.49
yamaha rt56v 4.07.11
nec ip38x/55i *
yamaha rt140e 6.01.06
yamaha rt105i 6.03.08
yamaha rt100i 1.07.05
yamaha rtv700 8.00.56
yamaha rtx1200 10.01.16
yamaha rt80i 3.00.23
yamaha rt200i 2.01.14
yamaha rt100i 3.00.33
nec ip38x/1000 *
yamaha rt102i 3.00.28
yamaha rtv700 8.00.84
yamaha rtx1200 10.01.11
yamaha rt103i 4.00.05
yamaha rt102i 2.02.38
yamaha rt102i 2.01.20
yamaha rt100i 2.02.29
yamaha rtv700 8.00.86
yamaha rt140p 6.02.04
yamaha rt200i 4.00.09
yamaha rt57i 8.00.13
yamaha rt105i 6.03.11
yamaha rt105e 6.03.33
yamaha rt250i 8.02.35
yamaha rt100i 2.01.21
yamaha rt102i 2.02.39
yamaha rt200i 2.01.20
yamaha rta50i 3.05.28
yamaha rtx1500 8.03.26
yamaha rt80i 3.00.18
yamaha rt103i 4.00.53
yamaha rt57i 8.00.83
yamaha rt105e 6.02.03
yamaha rtx3000 9.00.40
yamaha rtx1000 7.01.48
nec ip38x/52 *
yamaha rt57i 8.00.87
yamaha rtw65i 5.03.15
yamaha srt100 10.00.31
nec ip38x/105 *
yamaha rtx1500 8.03.83
yamaha rt102i 1.06.08
yamaha rt102i 2.02.17
yamaha rt57i 8.00.48
yamaha rt105e 6.02.19
yamaha rt80i 2.02.41
yamaha rt250i 8.02.36
nec ip38x/57i *
yamaha rt80i 2.02.27
yamaha rt140i 6.01.06
yamaha rt100i 2.02.36
yamaha rt102i 2.02.28
nec ip38x/250i *
yamaha rt100i 3.00.28
yamaha rt140f 6.03.15
yamaha srt100 10.00.49
yamaha rt102i 3.00.47
yamaha rt100i 3.00.42
yamaha rtx2000 7.01.34
yamaha rtx2000 7.01.47
yamaha rt200i 4.00.14
yamaha rt200i 2.00.07
yamaha rt57i 8.00.57
yamaha rt103i 4.00.11
yamaha rtv700 8.00.88
yamaha rt140e 6.03.08
yamaha rt57i 8.00.66
yamaha rtx1100 8.03.68
yamaha rt107e 8.03.90
yamaha rt80i 2.02.35
yamaha rt140e 6.03.18
yamaha rt300i 6.03.04
yamaha rt200i 3.00.42
yamaha rtx1500 8.03.08
yamaha rta50i 3.03.34
yamaha rt200i 2.02.39
yamaha rt140p 6.03.34
yamaha rt100i 2.02.46
yamaha rtx1100 8.03.42
yamaha rt140p 6.02.07
yamaha rta54i 4.04.08
yamaha rt105e 6.03.28
yamaha rt200i 2.02.23
yamaha rtx1000 7.01.49
yamaha rt200i 4.00.44
yamaha rtx1100 8.03.60
yamaha rtx1100 8.03.83
yamaha rt80i 3.00.45
yamaha rtx1100 8.03.41
yamaha rt140e 6.02.04
yamaha srt100 10.00.38
yamaha rtv700 8.00.81
yamaha rt103i 4.00.22
yamaha rtx1100 8.03.76
yamaha rt105p 6.03.33
yamaha rt140f 6.01.06
yamaha rt140i 6.01.09
yamaha rt102i 3.00.09
yamaha rt140e 6.03.15
yamaha rt140f 6.03.18
nec ip38x/sr100 *
yamaha rt140f 6.03.34
yamaha rt105e 6.02.07
yamaha rt200i 3.00.31
yamaha rta55i 4.06.28
yamaha rtx1100 8.03.77
yamaha rtx1000 7.00.29
yamaha rt100i 3.00.45
yamaha rtx1000 7.01.08
yamaha rtx3000 9.00.22
yamaha rtx1100 8.03.70
yamaha rt105i 6.03.04
yamaha rt80i 2.02.28
yamaha rt200i 2.01.21
yamaha rt107e 8.03.88
yamaha rt58i 9.01.19
yamaha rt250i 8.02.43
yamaha rt200i 4.00.02
yamaha rt56v 4.07.37
yamaha rt200i 4.00.53
yamaha rt100i 2.01.20
yamaha rt105i 6.03.15
yamaha rtx1100 8.03.80
yamaha rt300i 6.01.06
yamaha rt102i 2.02.45
yamaha rt100i 1.03.30
yamaha rt105p 6.02.07
yamaha rt300i 6.02.16
yamaha rtv700 8.00.60
yamaha rt200i 4.00.35
yamaha rt58i 9.01.21
yamaha rt102i 1.06.14
yamaha rta50i 3.05.30
yamaha rt200i 4.00.05
yamaha rt80i 2.02.38
yamaha rt100i 1.04.09
yamaha rt57i 8.00.89
yamaha rt100i 2.01.19
yamaha rtx2000 7.01.17
yamaha rtx2000 7.01.41
yamaha rta50i 3.03.28
yamaha rt102i 2.02.41
yamaha rtx1100 8.03.06
yamaha rt80i 3.00.09
yamaha rt105i 6.02.03
yamaha rt200i 2.02.19
yamaha rt102i 2.02.46
yamaha rt105e 6.03.25
yamaha rt100i 3.00.37
yamaha rt250i 8.02.42
yamaha rt58i 9.01.29
yamaha rt100i 2.02.33
yamaha rt250i 8.02.31
yamaha rt100i 2.02.44
yamaha rtx2000 7.00.15
yamaha rta50i 3.02.15
nec ip38x/1500 *
yamaha rt102i 1.07.05
yamaha rtx1000 7.01.29
yamaha rt102i 2.01.19
yamaha rt140p 6.03.33
yamaha rt100i 1.06.12
yamaha rt103i 4.00.54
yamaha rt56v 4.07.30
yamaha rt80i 3.00.42
yamaha rtw65b 5.03.25
yamaha rt80i 2.02.29
yamaha rt200i 3.00.28
yamaha rt103i 4.00.09
yamaha rta50i 3.02.21
yamaha rt200i 4.00.40
yamaha rt102i 2.02.23
yamaha rt57i 8.00.14
yamaha rtx2000 7.00.14
yamaha rt140f 6.01.07
yamaha rt80i 2.02.36
yamaha rt200i 2.02.35
yamaha rt200i 4.00.11
yamaha rt200i 4.00.36
yamaha rt105p 6.02.04
yamaha rt140p 6.01.06
yamaha rt100i 2.02.34
yamaha rt140f 6.02.03
yamaha rt57i 8.00.41
yamaha rt102i 3.00.18
yamaha rt80i 3.00.36
yamaha rtv700 8.00.69
yamaha rt105i 6.03.25
yamaha rtx3000 9.00.43
yamaha rt100i 1.03.25
yamaha rt107e 8.03.08
yamaha rt300i 6.03.18
yamaha rt56v 4.07.49
yamaha rt200i 2.02.36
yamaha rt140f 6.03.28
yamaha rt80i 3.00.44
yamaha rt102i 2.02.34
yamaha rt102i 2.02.29
yamaha rt140p 6.03.28
yamaha rt102i 2.02.36
yamaha rt140p 6.02.03
yamaha rt140e 6.02.03
yamaha rt102i 1.07.07
yamaha rt56v 4.07.19
yamaha rt300i 6.00.27
yamaha rtx1000 7.00.15
yamaha rt100i 2.02.28
yamaha rt300i 6.00.09
yamaha rtx1100 8.03.37
yamaha rt100i 1.04.06
yamaha rt140p 6.03.15
yamaha rt300i 6.03.34
yamaha rta50i 3.03.29
yamaha rt300i 6.03.15
yamaha rt100i 2.02.31
yamaha rta50i 3.04.39
yamaha rt102i 1.06.10
yamaha rta50i 3.03.25
yamaha rt103i 4.00.24
yamaha rt140f 6.03.08
yamaha rt140i 6.03.15
yamaha rt57i 8.00.19
yamaha rt80i 3.00.28
yamaha rt100i 3.00.35
yamaha rt100i 3.00.44
yamaha rt200i 2.02.45
nec ip38x/1200 *
yamaha rt200i 2.02.41
yamaha rt100i 2.02.19
yamaha rtx1100 8.03.87
yamaha rt102i 3.00.46
yamaha rtx1100 8.03.82
yamaha srt100 10.00.19
yamaha rt140e 6.03.04
yamaha rt140p 6.02.16
yamaha rt200i 2.02.31
yamaha rt200i 3.00.35
yamaha rtx3000 9.00.20
yamaha rt102i 2.01.14
yamaha rt200i 2.02.29
yamaha rt58i 9.01.33
yamaha rt100i 2.02.40
yamaha rt200i 2.02.33
yamaha rta54i 4.05.14
yamaha rt100i 1.06.10
yamaha rt140i 6.03.34
yamaha rtx3000 9.00.31
yamaha srt100 10.00.09
yamaha rt60w 5.01.16
yamaha rt105i 6.03.28
yamaha rtw65b 5.03.15
yamaha rt300i 6.00.11
yamaha rtx1000 7.01.15
yamaha rt57i 8.00.46
yamaha rtx1000 7.01.17
yamaha rt140f 6.03.04
yamaha rt80i 3.00.35
yamaha rt105e 6.03.08
yamaha rt300i 6.00.25
yamaha rt102i 3.00.33
yamaha rt80i 2.02.40
yamaha rt80i 3.00.16
nec ip38x/103 *
yamaha rt102i 2.02.44
yamaha rt200i 2.01.11
yamaha rt80i 3.00.46
yamaha rt140f 6.02.04
yamaha rtx1000 7.01.47
yamaha rt56v 4.07.54
yamaha rt140i 6.03.28
yamaha rt200i 4.00.37
yamaha rt57i 8.00.71
yamaha rt140i 6.03.08
yamaha rt102i 3.00.45
yamaha rt80i 2.02.15
yamaha rt140p 6.03.08
yamaha rt100i 1.05.10
yamaha rt103i 4.00.35
yamaha rtv700 8.00.39
yamaha rt100i 1.05.05
yamaha rt140i 6.02.07
yamaha rta50i 3.05.38
yamaha rt140e 6.02.16
yamaha srt100 10.00.28
yamaha rt103i 4.00.14
yamaha rt250i 8.02.50
yamaha rt102i 3.00.36
yamaha rt250i 8.02.28
yamaha rtx1000 7.00.14
yamaha rt105i 6.03.34
yamaha rta50i 3.02.17
yamaha rt105e 6.02.16
yamaha rt140i 6.02.19
yamaha rt200i 2.02.28
yamaha rt250i 8.02.19
yamaha rt200i 4.00.54
yamaha rt100i 1.06.14
yamaha rt57i 8.00.27
yamaha rt100i 2.02.39
yamaha rt80i 2.02.46
yamaha rt100i 3.00.18
yamaha rt58i 9.01.18
yamaha rt140i 6.03.18
yamaha rtx1000 7.01.05
yamaha rt200i 3.00.47
yamaha rt100i 1.07.01
yamaha rt100i 2.01.11
yamaha rt103i 4.00.38
yamaha rta55i 4.06.67
yamaha rt140i 6.03.04
yamaha rta52i 4.01.14
yamaha rt103i 4.00.18
yamaha rt60w 5.01.21
yamaha rta55i 4.06.60
yamaha rt102i 1.06.15
yamaha rt100i 2.02.35
yamaha rt200i 4.00.22
yamaha rt100i 1.06.22
yamaha rt105p 6.03.28
yamaha rt80i 2.02.17
yamaha rt200i 3.00.44
yamaha rt80i 2.02.34
yamaha rt200i 3.00.30
yamaha rt200i 4.00.38
yamaha rta54i 4.04.03
yamaha srt100 10.00.40
nec ip38x/2000 *
yamaha rt102i 3.00.23
yamaha rt300i 6.03.11
yamaha rt100i 1.03.12
yamaha rt56v 4.07.22
yamaha rt200i 2.02.46
yamaha rtv700 8.00.77
yamaha rt200i 3.00.23
yamaha rt100i 2.02.38
yamaha rt100i 1.03.24
yamaha rtx1000 7.01.16
yamaha rt105p 6.03.04
yamaha rtv700 8.00.80
yamaha rtx1100 8.03.26
yamaha rt102i 2.01.11
yamaha rt300i 6.02.07
yamaha rtx1000 7.01.04
yamaha rta54i 4.04.05
yamaha rt140e 6.02.07
yamaha rt58i 9.01.13
yamaha rta55i 4.06.54
yamaha rt200i 2.02.38
yamaha rt200i 4.00.18
yamaha rt300i 6.00.20
yamaha rt105p 6.02.03
yamaha rt300i 6.00.15
yamaha rt300i 6.03.28
yamaha rt105p 6.02.16
yamaha rt140i 6.02.16
yamaha rt80i 3.00.37
yamaha rt80i 2.02.45
yamaha rtx3000 9.00.37
yamaha rt300i 6.00.17
yamaha rt200i 2.02.44
yamaha rt140e 6.03.11
yamaha rt100i 3.00.09
yamaha rtx2000 7.01.54
yamaha rt100i 2.02.17
yamaha rt105p 6.03.11
yamaha rtx2000 7.01.29
yamaha rt300i 6.02.19
yamaha rt100i 1.06.08
yamaha rt100i 2.02.45
yamaha rtx1100 8.03.46
yamaha rt140e 6.01.07
yamaha rt80i 3.00.30
yamaha rt58i 9.01.36
yamaha rt80i 2.02.19
yamaha rt100i 2.01.14
yamaha rta52i 3.06.25
yamaha rt100i 1.02.08
yamaha rtw65b 5.03.11
yamaha rt60w 5.01.14
yamaha rt102i 3.00.37
yamaha rt102i 3.00.44
yamaha rt103i 4.00.37
yamaha rt200i 2.02.27
yamaha rt100i 2.02.23
yamaha rtx1100 8.03.61
yamaha rtx2000 7.00.30
yamaha srt100 10.00.27
yamaha rt300i 6.01.07
yamaha rta50i 3.05.35
yamaha rtx2000 7.00.29
yamaha rt300i 6.02.04
yamaha rt100i 2.02.27
yamaha rta55i 4.06.47
yamaha rtw65i 5.03.25
yamaha rt102i 3.00.16
yamaha rt58i 9.01.11
yamaha rta52i 3.06.20
yamaha rt140i 6.02.03
nec ip38x/58i *
yamaha rtx1100 8.03.78
yamaha rta50i 3.04.44
yamaha rtx2000 7.00.19
yamaha rt140f 6.03.11
yamaha rt140f 6.02.07
yamaha rt140i 6.03.33
yamaha rt140p 6.03.18
yamaha rt100i 2.02.41
yamaha rt102i 2.02.40
yamaha rt250i 8.02.48
yamaha rt140e 6.01.09
yamaha rt56v 4.07.45
yamaha rtx1000 7.01.26
yamaha rt102i 2.02.33
yamaha rt300i 6.03.25
yamaha rt102i 2.02.19
yamaha rta50i 3.02.19
yamaha rt200i 2.00.06
yamaha rtx3000 9.00.47
yamaha rt105p 6.03.08
yamaha rt140p 6.02.19
yamaha rt105e 6.03.18
yamaha rt80i 2.02.23
yamaha rt103i 4.00.39
yamaha rtx3000 9.00.44
yamaha rt105i 6.02.07
yamaha rt200i 2.02.40
yamaha rt100i 1.03.08
nec ip38x/300 *
nec ip38x/v700 *
yamaha rtx1000 7.01.41
yamaha rt102i 2.02.27
yamaha rt102i 1.07.01
yamaha rt140f 6.03.33
yamaha rt140e 6.03.33
yamaha rtx1000 7.01.53
yamaha rt102i 3.00.31
yamaha rta52i 4.01.15
yamaha rtv700 8.00.53
yamaha rt100i 1.02.16
yamaha rt200i 3.00.18
yamaha rt100i 1.03.15
yamaha rt103i 4.00.21
yamaha srt100 10.00.21
yamaha rt105p 6.03.18
yamaha rt200i 2.02.34
yamaha rtx1200 10.01.08
yamaha rt100i 1.05.09
yamaha rt102i 1.06.22
yamaha rt200i 4.00.24
yamaha rt200i 2.02.17
yamaha rtx1000 7.01.54
yamaha rt200i 3.00.16
yamaha rt105i 6.02.04
yamaha rt105e 6.03.11
yamaha rt105i 6.02.16
yamaha rt80i 3.00.31
yamaha rt102i 2.02.31
yamaha rt140f 6.02.19
yamaha rtx1000 7.00.30
yamaha rt200i 4.00.13
yamaha rtx2000 7.00.26
yamaha rtx3000 9.00.25
yamaha rt200i 3.00.09
yamaha rtx3000 9.00.15
yamaha rt105p 6.03.25
yamaha rt140i 6.03.25
yamaha rta50i 3.03.35
yamaha rt102i 2.02.35
yamaha rt300i 6.00.22
yamaha rt200i 4.00.07
yamaha rtv700 8.00.72
yamaha rt200i 3.00.46
yamaha rta52i 4.01.06
yamaha rtx2000 7.01.48
yamaha rt103i 4.00.02
yamaha rt140i 6.01.07
yamaha rt200i 4.00.48
yamaha rt140i 6.03.11
yamaha rt100i 3.00.47
yamaha rt103i 4.00.48
yamaha rt57i 8.00.91
yamaha rtx2000 7.01.53
yamaha rt80i 3.00.33
yamaha rt103i 4.00.33
yamaha rt80i 3.00.47
yamaha rt80i 2.02.33
yamaha rt100i 3.00.31
yamaha rt58i 9.01.41
yamaha rt80i 2.02.39
yamaha rt100i 3.00.16
yamaha rt100i 3.00.46
yamaha rt200i 4.00.21
yamaha rta54i 4.03.12
nec ip38x/200 *
yamaha rt140e 6.03.25
yamaha rt105p 6.03.15
yamaha rt100i 1.05.07
yamaha rt107e 8.03.26
yamaha rtv700 8.00.62
yamaha rt105e 6.03.15
yamaha rt300i 6.03.08
yamaha rt105e 6.02.04
yamaha rt105p 6.02.19
CVE-2013-0706 HIGH

NEC Universal RAID Utility 1.40 Rev 680 and earlier, 2.31 Rev 1492 and earlier, and 2.5 Rev 2244 and earlier does not provide access control, which allows remote attackers to perform arbitrary RAID disk operations via unspecified vectors.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-264,

Products Affected

Vendor Product Version
nec universal_raid_utility 2.5
nec universal_raid_utility 1.40
nec universal_raid_utility 2.31
nec universal_raid_utility *
CVE-2013-0717 MEDIUM

Multiple cross-site request forgery (CSRF) vulnerabilities in the web-based management utility on the NEC AtermWR9500N, AtermWR8600N, AtermWR8370N, AtermWR8160N, AtermWM3600R, and AtermWM3450RN routers allow remote attackers to hijack the authentication of administrators for requests that (1) initialize settings or (2) reboot the device.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
nec atermwr8370n -
nec atermwr8600n -
nec atermwm3450rn -
nec atermwr8160n -
nec atermwm3600r -
nec atermwr9500n -
CVE-2013-7314 MEDIUM

The OSPF implementation on NEC IP38X, IX1000, IX2000, and IX3000 routers does not consider the possibility of duplicate Link State ID values in Link State Advertisement (LSA) packets before performing operations on the LSA database, which allows remote attackers to cause a denial of service (routing disruption) or obtain sensitive packet information via a crafted LSA packet, a related issue to CVE-2013-0149.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
nec ip38x_300 -
nec ip38x_107e -
nec ip38x_1500 -
nec ip38x_810 -
nec ip38x_1100 -
nec ip38x_140 -
nec ip38x_2000 -
nec ip38x_1200 -
nec ip38x_1000 -
nec ip38x_250i -
nec ip38x_105 -
nec ip38x_3000 -
CVE-2016-1145 HIGH

Directory traversal vulnerability in WebManager in NEC EXPRESSCLUSTER X through 3.3 11.31 on Windows and through 3.3 3.3.1-1 on Linux and Solaris allows remote attackers to read arbitrary files via unspecified vectors.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-22,

Products Affected

Vendor Product Version
nec expresscluster_x 3.3
CVE-2018-0625 HIGH

Aterm WG1200HP firmware Ver1.0.31 and earlier allows attacker with administrator rights to execute arbitrary OS commands via formSysCmd parameter.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-78,

Products Affected

Vendor Product Version
nec aterm_wg1200hp_firmware *
CVE-2018-0626 HIGH

Aterm WG1200HP firmware Ver1.0.31 and earlier allows attacker with administrator rights to execute arbitrary OS commands via sysCmd in formWsc parameter.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-78,

Products Affected

Vendor Product Version
nec aterm_wg1200hp_firmware *
CVE-2018-0627 HIGH

Aterm WG1200HP firmware Ver1.0.31 and earlier allows attacker with administrator rights to execute arbitrary OS commands via targetAPSsid parameter.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-78,

Products Affected

Vendor Product Version
nec aterm_wg1200hp_firmware *
CVE-2018-0628 HIGH

Aterm WG1200HP firmware Ver1.0.31 and earlier allows attacker with administrator rights to execute arbitrary OS commands via HTTP request and response.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-78,

Products Affected

Vendor Product Version
nec aterm_wg1200hp_firmware *
CVE-2018-0629 HIGH

Aterm W300P Ver1.0.13 and earlier allows attacker with administrator rights to execute arbitrary OS commands via HTTP request and response.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-78,

Products Affected

Vendor Product Version
nec aterm_w300p_firmware *
CVE-2018-0630 HIGH

Aterm W300P Ver1.0.13 and earlier allows attacker with administrator rights to execute arbitrary OS commands via sysCmd parameter.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-78,

Products Affected

Vendor Product Version
nec aterm_w300p_firmware *
CVE-2018-0631 HIGH

Aterm W300P Ver1.0.13 and earlier allows attacker with administrator rights to execute arbitrary OS commands via targetAPSsid parameter.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-78,

Products Affected

Vendor Product Version
nec aterm_w300p_firmware *
CVE-2018-0632 MEDIUM

Buffer overflow in Aterm W300P Ver1.0.13 and earlier allows attacker with administrator rights to execute arbitrary code via HTTP request and response.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
nec aterm_w300p_firmware *
CVE-2018-0633 MEDIUM

Buffer overflow in Aterm W300P Ver1.0.13 and earlier allows attacker with administrator rights to execute arbitrary code via submit-url parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
nec aterm_w300p_firmware *
CVE-2018-0634 HIGH

Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS commands via FactoryPassword parameter or bootmode parameter of a certain URL.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-78,

Products Affected

Vendor Product Version
nec aterm_hc100rc_firmware *
CVE-2018-0635 HIGH

Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS commands via filename parameter.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-78,

Products Affected

Vendor Product Version
nec aterm_hc100rc_firmware *
CVE-2018-0636 HIGH

Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS commands via FactoryPassword parameter of a certain URL, different URL from CVE-2018-0634.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-78,

Products Affected

Vendor Product Version
nec aterm_hc100rc_firmware *
CVE-2018-0637 HIGH

Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS commands via export.cgi encKey parameter.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-78,

Products Affected

Vendor Product Version
nec aterm_hc100rc_firmware *
CVE-2018-0638 HIGH

Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS commands via import.cgi encKey parameter.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-78,

Products Affected

Vendor Product Version
nec aterm_hc100rc_firmware *
CVE-2018-0639 HIGH

Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS commands via tools_firmware.cgi date parameter, time parameter, and offset parameter.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-78,

Products Affected

Vendor Product Version
nec aterm_hc100rc_firmware *
CVE-2018-0640 MEDIUM

Buffer overflow in Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary code via netWizard.cgi date parameter, time parameter, and offset parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
nec aterm_hc100rc_firmware *
CVE-2018-0641 MEDIUM

Buffer overflow in Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary code via tools_system.cgi date parameter, time parameter, and offset parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
nec aterm_hc100rc_firmware *
CVE-2018-11741 MEDIUM

NEC Univerge Sv9100 WebPro 6.00.00 devices have Predictable Session IDs that result in Account Information Disclosure via Home.htm?sessionId=#####&GOTO(8) URIs.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
nec univerge_sv9100_webpro_firmware 6.00.00
CVE-2018-11742 MEDIUM

NEC Univerge Sv9100 WebPro 6.00.00 devices have Cleartext Password Storage in the Web UI.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-522,

Products Affected

Vendor Product Version
nec univerge_sv9100_webpro_firmware 6.00.00
CVE-2018-16192 LOW

Aterm WF1200CR and Aterm WG1200CR (Aterm WF1200CR firmware Ver1.1.1 and earlier, Aterm WG1200CR firmware Ver1.0.1 and earlier) allow an attacker on the same network segment to obtain information registered on the device via unspecified vectors.

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
nec aterm_wg1200cr_firmware *
nec aterm_wf1200cr_firmware *
CVE-2018-16193 LOW

Cross-site scripting vulnerability in Aterm WF1200CR and Aterm WG1200CR (Aterm WF1200CR firmware Ver1.1.1 and earlier, Aterm WG1200CR firmware Ver1.0.1 and earlier) allows authenticated attackers to inject arbitrary web script or HTML via unspecified vectors.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
nec aterm_wg1200cr_firmware *
nec aterm_wf1200cr_firmware *
CVE-2018-16194 HIGH

Aterm WF1200CR and Aterm WG1200CR (Aterm WF1200CR firmware Ver1.1.1 and earlier, Aterm WG1200CR firmware Ver1.0.1 and earlier) allows authenticated attackers to execute arbitrary OS commands via unspecified vectors.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-78,

Products Affected

Vendor Product Version
nec aterm_wg1200cr_firmware *
nec aterm_wf1200cr_firmware *
CVE-2018-16195 HIGH

Aterm WF1200CR and Aterm WG1200CR (Aterm WF1200CR firmware Ver1.1.1 and earlier, Aterm WG1200CR firmware Ver1.0.1 and earlier) allows an attacker on the same network segment to execute arbitrary OS commands via SOAP interface of UPnP.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-78,

Products Affected

Vendor Product Version
nec aterm_wg1200cr_firmware *
nec aterm_wf1200cr_firmware *
CVE-2019-20025 HIGH

Certain builds of NEC SV9100 software could allow an unauthenticated, remote attacker to log into a device running an affected release with a hardcoded username and password, aka a Static Credential Vulnerability. The vulnerability is due to an undocumented user account with manufacturer privilege level. An attacker could exploit this vulnerability by using this account to remotely log into an affected device. A successful exploit could allow the attacker to log into the device with manufacturer level access. This vulnerability affects SV9100 PBXes that are running software release 6.0 or higher. This vulnerability does not affect SV9100 software releases prior to 6.0.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-798,

Products Affected

Vendor Product Version
nec sv9100_firmware *
CVE-2019-20026 MEDIUM

The WebPro interface in NEC SV9100 software releases 7.0 or higher allows unauthenticated remote attackers to reset all existing usernames and passwords to default values via a crafted request.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
nec sv9100_firmware *
CVE-2019-20027 HIGH

Aspire-derived NEC PBXes, including the SV8100, SV9100, SL1100 and SL2100 with software releases 7.0 or higher contain the possibility if incorrectly configured to allow a blank username and password combination to be entered as a valid, successfully authenticating account.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-287,

Products Affected

Vendor Product Version
nec sv8100_firmware *
nec sv9100_firmware *
nec sl2100_firmware *
nec sl1100_firmware *
CVE-2019-20028 MEDIUM

Aspire-derived NEC PBXes operating InMail software, including all versions of SV8100, SV9100, SL1100 and SL2100 devices allow unauthenticated read-only access to voicemails, greetings, and voice response system content through a system's WebPro administration interface.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
nec sv8100_firmware *
nec sv9100_firmware *
nec sl2100_firmware *
nec sl1100_firmware *
CVE-2019-20029 MEDIUM

An exploitable privilege escalation vulnerability exists in the WebPro functionality of Aspire-derived NEC PBXes, including all versions of SV8100, SV9100, SL1100 and SL2100 devices. A specially crafted HTTP POST can cause privilege escalation resulting in a higher privileged account, including an undocumented developer level of access.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
nec sv8100_firmware *
nec sv9100_firmware *
nec sl2100_firmware *
nec sl1100_firmware *
CVE-2019-20030 MEDIUM

An attacker with knowledge of the modem access number on a NEC UM8000 voicemail system may use SSH tunneling or standard Linux utilities to gain access to the system's LAN port. All versions are affected.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
nec um8000_firmware *
CVE-2019-20031 MEDIUM

NEC UM8000, UM4730 and prior non-InMail voicemail systems with all known software versions may permit an infinite number of login attempts in the telephone user interface (TUI), effectively allowing brute force attacks.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-307,

Products Affected

Vendor Product Version
nec um4730_firmware *
nec um8000_firmware *
CVE-2019-20032 MEDIUM

An attacker with access to an InMail voicemail box equipped with the find me/follow me feature on Aspire-derived NEC PBXes, including all versions of SV8100, SV9100, SL1100 and SL2100 devices, may access the system's administration modem.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
nec sv8100_firmware *
nec sv9100_firmware *
nec sl2100_firmware *
nec sl1100_firmware *
CVE-2019-20033 HIGH

On Aspire-derived NEC PBXes, including all versions of SV8100 devices, a set of documented, static login credentials may be used to access the DIM interface.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-287,

Products Affected

Vendor Product Version
nec sv8100_firmware *
CVE-2020-10917 HIGH

This vulnerability allows remote attackers to execute arbitrary code on affected installations of NEC ESMPRO Manager 6.42. Authentication is not required to exploit this vulnerability. The specific flaw exists within the RMI service. The issue results from the lack of proper validation of user-supplied data, which can result in deserialization of untrusted data. An attacker can leverage this vulnerability to execute code in the context of SYSTEM. Was ZDI-CAN-10007.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-502,

Products Affected

Vendor Product Version
nec esmpro_manager 6.42
CVE-2020-12695 HIGH

The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subscription request with a delivery URL on a different network segment than the fully qualified event-subscription URL, aka the CallStranger issue.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:H 2.2 4.7

CVSS 2.0

Severity: HIGH

Problem Type: CWE-276,

Products Affected

Vendor Product Version
hp envy_7640 -
epson xp-960 -
hp envy_photo_7100_3xd89a -
hp envy_4509_d3p94a -
hp deskjet_ink_advantage_3545_a9t81c -
hp envy_4509_d3p94b -
hp envy_photo_6252_k7g22a -
hp envy_4527_j6u61b -
huawei hg255s -
hp hp_officejet_4650_e6g87a -
hp hp_envy_4520_f0v69a -
hp hp_deskjet_ink_advantage_4676_f1h98a -
hp envy_4507_e6g70b -
hp envy_photo_6200_k7g18a -
hp envy_5544_k7c89a -
hp envy_5539 -
hp envy_5640_b9s56a -
hp envy_photo_7800_k7s00a -
epson xp-4100 -
hp envy_114_cq812a -
hp envy_5000_z4a54a -
hp deskjet_ink_advantage_5575_g0v48b -
hp envy_5531 -
hp officejet_4655_k9v82b -
zte zxv10_w300 -
hp envy_photo_6220_k7g20d -
hp officejet_4650_f1h96a -
epson ep-101 -
hp hp_officejet_4652_f1j02a -
hp envy_photo_7800_k7r96a -
hp hp_envy_4524_f0v72b -
netgear wnhde111 -
hp envy_5535 -
hp envy_114_cq811a -
hp envy_5542_k7c88a -
hp officejet_4656_k9v81b -
hp envy_photo_7155_z3m52a -
hp envy_4503_e6g71b -
hp envy_4512_k9h49a -
epson xp-4105 -
epson xp-320 -
hp 5030_z4a70a -
huawei hg532e -
epson xp-340 -
hp hp_envy_4524_k9t01a -
hp deskjet_ink_advantage_4535_f0v64b -
hp hp_envy_4523_j6u60b -
hp envy_4501_c8d05a -
hp officejet_4654_f1j06b -
hp hp_deskjet_ink_advantage_4678_f1h99b -
hp hp_envy_4524_f0v71b -
hp officejet_4654_f1j07b -
hp hp_officejet_4656_k9v81b -
canonical ubuntu_linux 20.04
hp deskjet_ink_advantage_4675_f1h97b -
hp envy_114_cq811b -
hp envy_photo_7100_z3m52a -
hp envy_5534 -
hp hp_envy_4511_k9h50a -
epson xp-8500 -
hp deskjet_ink_advantage_4535_f0v64c -
hp hp_deskjet_ink_advantage_4535_f0v64a -
hp envy_6055_5se16a -
hp envy_4504_a9t88b -
hp hp_envy_4516_k9h52a -
w1.fi hostapd *
hp envy_6020_5se16b -
hp envy_4520_f0v63a -
fedoraproject fedora 32
hp envy_4522_f0v67a -
hp hp_officejet_4652_k9v84b -
hp envy_photo_7822_y0g43d -
hp hp_officejet_4655_k9v79a -
hp deskjet_ink_advantage_5575_g0v48c -
hp envy_6020_7cz37a -
cisco wap351 -
hp 5034_z4a74a -
cisco wap150 -
epson xp-970 -
hp deskjet_ink_advantage_4518 -
hp envy_photo_7830_y0g50b -
hp envy_pro_6420_5se46a -
hp envy_4513_k9h51a -
hp envy_5543_n9u88a -
hp envy_5642_b9s64a -
hp envy_111_cq810a -
hp envy_4520_f0v69a -
hp envy_5532 -
hp envy_5540_g0v47a -
epson xp-100 -
hp hp_envy_4527_j6u61b -
hp envy_photo_7800_y0g52b -
hp hp_officejet_4652_f1j05b -
hp envy_5000_m2u91a -
epson xp-241 -
hp hp_deskjet_ink_advantage_4675_f1h97b -
hp envy_photo_7800_y0g42d -
hp envy_4521_k9t10b -
hp envy_photo_6220_k7g21b -
hp deskjet_ink_advantage_4675_f1h97c -
hp hp_deskjet_ink_advantage_4535_f0v64b -
hp deskjet_ink_advantage_3546_a9t82a -
hp envy_120_cz022a -
hp envy_4526_k9t05b -
hp envy_5546_k7c90a -
hp envy_100_cn519a -
hp envy_5540_g0v52a -
hp envy_5020_m2u91b -
epson xp-630 -
hp envy_4524_k9t01a -
hp envy_pro_6420_6wd16a -
hp hp_deskjet_ink_advantage_4538_f0v66b -
microsoft windows_10 -
hp envy_photo_7100_k7g93a -
epson xp-440 -
hp deskjet_ink_advantage_3548_a9t81b -
tp-link archer_c50 -
fedoraproject fedora 31
epson xp-2105 -
hp hp_envy_4525_k9t09b -
hp hp_officejet_4658_v6d30b -
hp envy_photo_6200_k7g26b -
hp envy_100_cn518a -
hp envy_photo_6200_y0k15a -
hp envy_photo_7164_k7g99a -
hp officejet_4655_f1j00a -
hp envy_5646_f8b05a -
hp hp_envy_4520_e6g67b -
nec wr8165n -
hp envy_6020_5se17a -
hp hp_officejet_4657_v6d29b -
hp envy_4500_a9t80a -
epson xp-620 -
hp envy_5541_k7g89a -
hp hp_envy_4521_k9t10b -
epson xp-2101 -
hp envy_pro_6420_5se45b -
hp envy_4516_k9h52a -
hp envy_5540_g0v53a -
hp envy_110_cq809b -
hp hp_officejet_4655_f1j00a -
cisco wap131 -
hp envy_photo_6200_k7s21b -
hp officejet_4657_v6d29b -
hp envy_5540_f2e72a -
hp envy_4502_a9t87b -
hp hp_envy_4513_k9h51a -
epson xp-330 -
hp envy_5664_f8b08a -
hp envy_4500_a9t80b -
hp deskjet_ink_advantage_4536_f0v65a -
hp envy_photo_6200_y0k13d_ -
hp envy_5000_z4a74a -
hp deskjet_ink_advantage_4535_f0v64a -
hp envy_5540_k7c85a -
hp envy_photo_6232_k7g26b -
hp envy_7644_e4w46a -
epson m571t -
hp hp_envy_4522_f0v67a -
hp envy_110_cq809d -
hp officejet_4650_f1h96b -
hp officejet_4655_k9v79a -
hp envy_120_cz022b -
ruckussecurity zonedirector_1200 -
hp envy_4524_f0v72b -
hp hp_envy_4528_k9t08b -
hp envy_6020_6wd35a -
debian debian_linux 9.0
ui unifi_controller -
hp envy_4511_k9h50a -
hp envy_5540_g0v51a -
hp envy_5548_k7g87a -
dell b1165nfw -
hp envy_5000_m2u85a -
zyxel vmg8324-b10a -
hp envy_4504_c8d04a -
hp envy_5644_b9s65a -
hp envy_4524_f0v71b -
hp hp_envy_4520_f0v63b -
hp envy_4500_a9t89a -
hp envy_pro_6420_6wd14a -
hp envy_5665_f8b06a -
hp envy_120_cz022c -
hp envy_100_cn517c -
hp envy_photo_7800_k7s10d -
hp envy_pro_6455_5se45a -
hp hp_officejet_4654_f1j06b -
hp envy_110_cq809a -
hp envy_5547_j6u64a -
hp officejet_4650_e6g87a -
hp envy_6052_5se18a -
asus rt-n11 -
hp envy_4505_a9t86a -
hp officejet_4652_k9v84b -
epson ew-m970a3t -
hp envy_100_cn517a -
hp envy_photo_6222_y0k13d -
hp deskjet_ink_advantage_4678_f1h99b -
hp envy_4520_e6g67b -
hp envy_4528_k9t08b -
hp hp_officejet_4655_k9v82b -
hp envy_5530 -
hp envy_photo_6234_k7s21b -
epson xp-8600 -
hp officejet_4658_v6d30b -
hp envy_4525_k9t09b -
hp hp_officejet_4654_f1j07b -
hp officejet_4652_f1j05b -
hp envy_4523_j6u60b -
hp hp_officejet_4650_f1h96b -
hp envy_photo_6230_k7g25b -
hp 5660_f8b04a -
microsoft xbox_one 10.0.19041.2494
hp hp_officejet_4650_f1h96a -
hp envy_110_cq809c -
hp hp_deskjet_ink_advantage_4675_f1h97c -
hp envy_7645_e4w44a -
hp deskjet_ink_advantage_3456_a9t84c -
hp envy_5643_b9s63a -
hp hp_envy_4520_e6g67a -
hp envy_4500_d3p93a -
hp envy_6540_b9s59a -
hp officejet_4652_f1j02a -
hp envy_5544_k7c93a -
hp hp_deskjet_ink_advantage_4675_f1h97a -
hp hp_envy_4526_k9t05b -
hp deskjet_ink_advantage_3545_a9t81a -
hp envy_110_cq812c -
hp envy_pro_6452_5se47a -
hp envy_5545_g0v50a -
hp envy_4508_e6g72b -
hp deskjet_ink_advantage_4515 -
canon selphy_cp1200 -
hp envy_photo_7822_y0g42d -
hp envy_photo_6222_y0k14d -
hp deskjet_ink_advantage_4675_f1h97a -
hp envy_5000_m2u91a *
zyxel amg1202-t10b -
hp 5030_m2u92b -
hp 5020_z4a69a -
hp deskjet_ink_advantage_4676_f1h98a -
hp hp_deskjet_ink_advantage_4536_f0v65a -
hp envy_5640_b9s58a -
hp envy_photo_7120_z3m41d -
hp hp_envy_4512_k9h49a -
broadcom adsl -
dlink dvg-n5412sp -
hp envy_5000_m2u85b -
hp envy_4520_f0v63b -
hp hp_envy_4520_f0v63a -
hp envy_100_cn519b -
epson xp-702 -
hp envy_photo_7100_k7g99a -
hp hp_deskjet_ink_advantage_4535_f0v64c -
hp deskjet_ink_advantage_3545_a9t83b -
hp envy_photo_7100_z3m37a -
hp envy_4502_a9t85a -
hp deskjet_ink_advantage_4538_f0v66b -
hp envy_100_cn517b -
hp envy_5536 -
debian debian_linux 10.0
hp envy_4520_e6g67a -
hp envy_5000_m2u94b -
CVE-2020-17408 MEDIUM

This vulnerability allows remote attackers to disclose sensitive information on affected installations of NEC ExpressCluster 4.1. Authentication is not required to exploit this vulnerability. The specific flaw exists within the clpwebmc executable. Due to the improper restriction of XML External Entity (XXE) references, a specially-crafted document specifying a URI causes the XML parser to access the URI and embed the contents back into the XML document for further processing. An attacker can leverage this vulnerability to disclose information in the context of SYSTEM. Was ZDI-CAN-10801.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-611,

Products Affected

Vendor Product Version
nec expresscluster_x 4.2
nec expresscluster_x 4.1
CVE-2020-27859 MEDIUM

This vulnerability allows remote attackers to disclose sensitive information on affected installations of NEC ESMPRO Manager 6.42. Authentication is not required to exploit this vulnerability. The specific flaw exists within the GetEuaLogDownloadAction class. The issue results from the lack of proper validation of a user-supplied path prior to using it in file operations. An attacker can leverage this vulnerability to disclose information in the context of SYSTEM. Was ZDI-CAN-9607.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,CWE-22,

Products Affected

Vendor Product Version
nec esmpro_manager 6.42
CVE-2020-5524 HIGH

Aterm series (Aterm WF1200C firmware Ver1.2.1 and earlier, Aterm WG1200CR firmware Ver1.2.1 and earlier, Aterm WG2600HS firmware Ver1.3.2 and earlier) allows an attacker on the same network segment to execute arbitrary OS commands with root privileges via UPnP function.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-78,

Products Affected

Vendor Product Version
nec aterm_wg2600hs_firmware *
nec aterm_wg1200cr_firmware *
nec aterm_wf1200c_firmware *
CVE-2020-5525 HIGH

Aterm series (Aterm WF1200C firmware Ver1.2.1 and earlier, Aterm WG1200CR firmware Ver1.2.1 and earlier, Aterm WG2600HS firmware Ver1.3.2 and earlier) allows an authenticated attacker on the same network segment to execute arbitrary OS commands with root privileges via management screen.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.0 HIGH CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.1 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-78,

Products Affected

Vendor Product Version
nec aterm_wg2600hs_firmware *
nec aterm_wg1200cr_firmware *
nec aterm_wf1200c_firmware *
CVE-2020-5533 MEDIUM

Cross-site scripting vulnerability in Aterm WG2600HS firmware Ver1.3.2 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
nec aterm_wg2600hs_firmware *
CVE-2020-5534 HIGH

Aterm WG2600HS firmware Ver1.3.2 and earlier allows an authenticated attacker on the same network segment to execute arbitrary OS commands with root privileges via unspecified vectors.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.0 HIGH CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.1 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-78,

Products Affected

Vendor Product Version
nec aterm_wg2600hs_firmware *
CVE-2020-5632 HIGH

InfoCage SiteShell series (Host type SiteShell for IIS V1.4, V1.5, and V1.6, Host type SiteShell for IIS prior to revision V2.0.0.6, V2.1.0.7, V2.1.1.6, V3.0.0.11, V4.0.0.6, V4.1.0.5, and V4.2.0.1, Host type SiteShell for Apache Windows V1.4, V1.5, and V1.6, and Host type SiteShell for Apache Windows prior to revision V2.0.0.6, V2.1.0.7, V2.1.1.6, V3.0.0.11, V4.0.0.6, V4.1.0.5, and V4.2.0.1) allow authenticated attackers to bypass access restriction and to execute arbitrary code with an elevated privilege via a specially crafted executable files.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
nec infocage_siteshell 1.4
nec infocage_siteshell 1.6
nec infocage_siteshell 1.5
nec infocage_siteshell *
CVE-2020-5633 HIGH

Multiple NEC products (Express5800/T110j, Express5800/T110j-S, Express5800/T110j (2nd-Gen), Express5800/T110j-S (2nd-Gen), iStorage NS100Ti, and Express5800/GT110j) where Baseboard Management Controller (BMC) firmware Rev1.09 and earlier is applied allows remote attackers to bypass authentication and then obtain/modify BMC setting information, obtain monitoring information, or reboot/shut down the vulnerable product via unspecified vectors.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-287,

Products Affected

Vendor Product Version
nec baseboard_management_controller *
CVE-2020-5684 MEDIUM

iSM client versions from V5.1 prior to V12.1 running on NEC Storage Manager or NEC Storage Manager Express does not verify a server certificate properly, which allows a man-in-the-middle attacker to eavesdrop on an encrypted communication or alter the communication via a crafted certificate.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.8 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N 2.2 2.5

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-295,

Products Affected

Vendor Product Version
nec ism_server *
CVE-2020-5685 HIGH

UNIVERGE SV9500 series from V1 to V7and SV8500 series from S6 to S8 allows an attacker to execute arbitrary OS commands or cause a denial-of-service (DoS) condition by sending a specially crafted request to a specific URL.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-78,

Products Affected

Vendor Product Version
nec univerge_sv9500_firmware *
nec univerge_sv8500_firmware *
CVE-2020-5686 MEDIUM

Incorrect implementation of authentication algorithm issue in UNIVERGE SV9500 series from V1 to V7and SV8500 series from S6 to S8 allows an attacker to access the remote system maintenance feature and obtain the information by sending a specially crafted request to a specific URL.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
nec univerge_sv9500_firmware *
nec univerge_sv8500_firmware *
CVE-2021-20653 MEDIUM

Calsos CSDJ (CSDJ-B 01.08.00 and earlier, CSDJ-H 01.08.00 and earlier, CSDJ-D 01.08.00 and earlier, and CSDJ-A 03.08.00 and earlier) allows remote attackers to bypass access restriction and to obtain unauthorized historical data without access privileges via unspecified vectors.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-276,

Products Affected

Vendor Product Version
nec csdj-b_firmware *
nec csdj-a_firmware *
nec csdj-h_firmware *
nec csdj-d_firmware *
CVE-2021-20680 MEDIUM

Cross-site scripting vulnerability in NEC Aterm devices (Aterm WG1900HP2 firmware Ver.1.3.1 and earlier, Aterm WG1900HP firmware Ver.2.5.1 and earlier, Aterm WG1800HP4 firmware Ver.1.3.1 and earlier, Aterm WG1800HP3 firmware Ver.1.5.1 and earlier, Aterm WG1200HS2 firmware Ver.2.5.0 and earlier, Aterm WG1200HP3 firmware Ver.1.3.1 and earlier, Aterm WG1200HP2 firmware Ver.2.5.0 and earlier, Aterm W1200EX firmware Ver.1.3.1 and earlier, Aterm W1200EX-MS firmware Ver.1.3.1 and earlier, Aterm WG1200HS firmware all versions Aterm WG1200HP firmware all versions Aterm WF800HP firmware all versions Aterm WF300HP2 firmware all versions Aterm WR8165N firmware all versions Aterm W500P firmware all versions, and Aterm W300P firmware all versions) allows remote attackers to inject arbitrary script or HTML via unspecified vectors.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
nec aterm_wg1900hp_firmware *
nec aterm_wg1900hp2_firmware *
nec aterm_wg1200hp2_firmware *
nec aterm_w1200ex_firmware *
nec aterm_wg1200hs2_firmware *
nec aterm_wg1800hp3_firmware *
nec aterm_wf300hp2_firmware *
nec aterm_wg1200hs3_firmware *
nec aterm_wg1200hp3_firmware *
nec aterm_w500p_firmware *
nec aterm_wg1800hp4_firmware *
nec aterm_wg1200hs_firmware *
nec aterm_wf800hp_firmware *
nec aterm_wg1200hp_firmware *
nec aterm_w1200ex-ms_firmware *
nec aterm_w300p_firmware *
nec aterm_wr8165n_firmware *
CVE-2021-20700 HIGH

Buffer overflow vulnerability in the Disk Agent CLUSTERPRO X 4.3 for Windows and earlier, EXPRESSCLUSTER X 4.3 for Windows and earlier, CLUSTERPRO X 4.3 SingleServerSafe for Windows and earlier, EXPRESSCLUSTER X 4.3 SingleServerSafe for Windows and earlier allows attacker to remote code execution via a network.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-120,

Products Affected

Vendor Product Version
nec clusterpro_x_singleserversafe *
nec clusterpro_x *
nec expresscluster_x_singleserversafe *
nec expresscluster_x *
CVE-2021-20701 HIGH

Buffer overflow vulnerability in the Disk Agent CLUSTERPRO X 4.3 for Windows and earlier, EXPRESSCLUSTER X 4.3 for Windows and earlier, CLUSTERPRO X 4.3 SingleServerSafe for Windows and earlier, EXPRESSCLUSTER X 4.3 SingleServerSafe for Windows and earlier allows attacker to remote code execution via a network.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-120,

Products Affected

Vendor Product Version
nec clusterpro_x_singleserversafe *
nec clusterpro_x *
nec expresscluster_x_singleserversafe *
nec expresscluster_x *
CVE-2021-20702 HIGH

Buffer overflow vulnerability in the Transaction Server CLUSTERPRO X 4.3 for Windows and earlier, EXPRESSCLUSTER X 4.3 for Windows and earlier, CLUSTERPRO X 4.3 SingleServerSafe for Windows and earlier, EXPRESSCLUSTER X 4.3 SingleServerSafe for Windows and earlier allows attacker to remote code execution via a network.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-120,

Products Affected

Vendor Product Version
nec clusterpro_x_singleserversafe *
nec clusterpro_x *
nec expresscluster_x_singleserversafe *
nec expresscluster_x *
CVE-2021-20703 HIGH

Buffer overflow vulnerability in the Transaction Server CLUSTERPRO X 4.3 for Windows and earlier, EXPRESSCLUSTER X 4.3 for Windows and earlier, CLUSTERPRO X 4.3 SingleServerSafe for Windows and earlier, EXPRESSCLUSTER X 4.3 SingleServerSafe for Windows and earlier allows attacker to remote code execution via a network.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-120,

Products Affected

Vendor Product Version
nec clusterpro_x_singleserversafe *
nec clusterpro_x *
nec expresscluster_x_singleserversafe *
nec expresscluster_x *
CVE-2021-20704 HIGH

Buffer overflow vulnerability in the compatible API with previous versions CLUSTERPRO X 4.3 for Windows and earlier, EXPRESSCLUSTER X 4.3 for Windows and earlier, CLUSTERPRO X 4.3 SingleServerSafe for Windows and earlier, EXPRESSCLUSTER X 4.3 SingleServerSafe for Windows and earlier allows attacker to remote code execution via a network.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-120,

Products Affected

Vendor Product Version
nec clusterpro_x_singleserversafe *
nec clusterpro_x *
nec expresscluster_x_singleserversafe *
nec expresscluster_x *
CVE-2021-20705 MEDIUM

Improper input validation vulnerability in the WebManager CLUSTERPRO X 4.3 for Windows and earlier, EXPRESSCLUSTER X 4.3 for Windows and earlier, CLUSTERPRO X 4.3 SingleServerSafe for Windows and earlier, EXPRESSCLUSTER X 4.3 SingleServerSafe for Windows and earlier allows attacker to remote file upload via network.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
nec clusterpro_x_singleserversafe *
nec clusterpro_x *
nec expresscluster_x_singleserversafe *
nec expresscluster_x *
CVE-2021-20706 MEDIUM

Improper input validation vulnerability in the WebManager CLUSTERPRO X 4.3 for Windows and earlier, EXPRESSCLUSTER X 4.3 for Windows and earlier, CLUSTERPRO X 4.3 SingleServerSafe for Windows and earlier, EXPRESSCLUSTER X 4.3 SingleServerSafe for Windows and earlier allows attacker to remote file upload via network.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
nec clusterpro_x_singleserversafe *
nec clusterpro_x *
nec expresscluster_x_singleserversafe *
nec expresscluster_x *
CVE-2021-20707 MEDIUM

Improper input validation vulnerability in the Transaction Server CLUSTERPRO X 4.3 for Windows and earlier, EXPRESSCLUSTER X 4.3 for Windows and earlier, CLUSTERPRO X 4.3 SingleServerSafe for Windows and earlier, EXPRESSCLUSTER X 4.3 SingleServerSafe for Windows and earlier allows attacker to read files upload via network..

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
nec clusterpro_x_singleserversafe *
nec clusterpro_x *
nec expresscluster_x_singleserversafe *
nec expresscluster_x *
CVE-2021-20708 HIGH

NEC Aterm devices (Aterm WF1200CR firmware Ver1.3.2 and earlier, Aterm WG1200CR firmware Ver1.3.3 and earlier, and Aterm WG2600HS firmware Ver1.5.1 and earlier) allow authenticated attackers to execute arbitrary OS commands by sending a specially crafted request to a specific URL.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.2 HIGH CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 1.2 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-78,

Products Affected

Vendor Product Version
nec aterm_wg2600hs_firmware *
nec aterm_wg1200cr_firmware *
nec aterm_wf1200cr_firmware *
CVE-2021-20709 HIGH

Improper validation of integrity check value vulnerability in NEC Aterm WF1200CR firmware Ver1.3.2 and earlier, Aterm WG1200CR firmware Ver1.3.3 and earlier, and Aterm WG2600HS firmware Ver1.5.1 and earlier allows an attacker with an administrative privilege to execute arbitrary OS commands by sending a specially crafted request to a specific URL.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.2 HIGH CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 1.2 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-354,

Products Affected

Vendor Product Version
nec aterm_wg2600hs_firmware *
nec aterm_wg1200cr_firmware *
nec aterm_wf1200cr_firmware *
CVE-2021-20711 HIGH

Aterm WG2600HS firmware Ver1.5.1 and earlier allows an attacker to execute arbitrary OS commands via unspecified vectors.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-78,

Products Affected

Vendor Product Version
nec aterm_wg2600hs_firmware *
CVE-2021-20712 MEDIUM

Improper access control vulnerability in NEC Aterm WG2600HS firmware Ver1.5.1 and earlier, and Aterm WX3000HP firmware Ver1.1.2 and earlier allows a device connected to the LAN side to be accessed from the WAN side due to the defect in the IPv6 firewall function.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
nec aterm_wg2600hs_firmware *
nec aterm_wx3000hp_firmware *
CVE-2021-20740 HIGH

Hitachi Virtual File Platform Versions prior to 5.5.3-09 and Versions prior to 6.4.3-09, and NEC Storage M Series NAS Gateway Nh4a/Nh8a versions prior to FOS 5.5.3-08(NEC2.5.4a) and Nh4b/Nh8b, Nh4c/Nh8c versions prior to FOS 6.4.3-08(NEC3.4.2) allow remote authenticated attackers to execute arbitrary OS commands with root privileges via unspecified vectors.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-78,

Products Affected

Vendor Product Version
nec nas_gateway_nh4c_firmware *
nec nas_gateway_nh8b_firmware *
nec nas_gateway_nh4b_firmware *
nec nas_gateway_nh8a_firmware *
hitachi virtual_file_platform *
nec nas_gateway_nh8c_firmware *
nec nas_gateway_nh4a_firmware *
CVE-2021-44746 MEDIUM

UNIVERGE DT 820 V3.2.7.0 and prior, UNIVERGE DT 830 V5.2.7.0 and prior, UNIVERGE DT 930 V2.4.0.0 and prior, IP Phone Manager V8.9.1 and prior, Data Maintenance Tool for DT900 Series V5.3.0.0 and prior, Data Maintenance Tool for DT800 Series V4.2.0.0 and prior allows a remote attacker who can access to the internal network, the configuration information may be obtained.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
nec univerge_dt800_data_maintenance_tool *
nec univerge_dt820_firmware *
nec univerge_dt900_data_maintenance_tool *
nec univerge_ip_phone_manager *
nec univerge_dt830_firmware *
nec univerge_dt930_firmware *
CVE-2022-25621 HIGH

UUNIVERGE WA 1020 Ver8.2.11 and prior, UNIVERGE WA 1510 Ver8.2.11 and prior, UNIVERGE WA 1511 Ver8.2.11 and prior, UNIVERGE WA 1512 Ver8.2.11 and prior, UNIVERGE WA 2020 Ver8.2.11 and prior, UNIVERGE WA 2021 Ver8.2.11 and prior, UNIVERGE WA 2610-AP Ver8.2.11 and prior, UNIVERGE WA 2611-AP Ver8.2.11 and prior, UNIVERGE WA 2611E-AP Ver8.2.11 and prior, UNIVERGE WA WA2612-AP Ver8.2.11 and prior allows a remote attacker to execute arbitrary OS commands.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-78,

Products Affected

Vendor Product Version
nec univerge_wa2610-ap_firmware *
nec univerge_wa2020_firmware *
nec univerge_wa2021_firmware *
nec univerge_wa1020_firmware *
nec univerge_wa1512_firmware *
nec univerge_wa1510_firmware *
nec univerge_wa2612-ap_firmware *
nec univerge_wa2611-ap_firmware *
nec univerge_wa1511_firmware *
nec univerge_wa2611e-ap_firmware *
CVE-2022-34822

Path traversal vulnerability in CLUSTERPRO X 5.0 for Windows and earlier, EXPRESSCLUSTER X 5.0 for Windows and earlier, CLUSTERPRO X 5.0 SingleServerSafe for Windows and earlier, EXPRESSCLUSTER X 5.0 SingleServerSafe for Windows and earlier allows a remote unauthenticated attacker to overwrite existing files on the file system and to potentially execute arbitrary code.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
nec expresscluster_x_singleserversafe *
nec expresscluster_x *
CVE-2022-34823

Buffer overflow vulnerability in CLUSTERPRO X 5.0 for Windows and earlier, EXPRESSCLUSTER X 5.0 for Windows and earlier, CLUSTERPRO X 5.0 SingleServerSafe for Windows and earlier, EXPRESSCLUSTER X 5.0 SingleServerSafe for Windows and earlier allows a remote unauthenticated attacker to overwrite existing files on the file system and to potentially execute arbitrary code.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
nec expresscluster_x_singleserversafe *
nec expresscluster_x *
CVE-2022-34824

Weak File and Folder Permissions vulnerability in CLUSTERPRO X 5.0 for Windows and earlier, EXPRESSCLUSTER X 5.0 for Windows and earlier, CLUSTERPRO X 5.0 SingleServerSafe for Windows and earlier, EXPRESSCLUSTER X 5.0 SingleServerSafe for Windows and earlier allows a remote unauthenticated attacker to overwrite existing files on the file system and to potentially execute arbitrary code.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
nec expresscluster_x_singleserversafe *
nec expresscluster_x *
CVE-2022-34825

Uncontrolled Search Path Element in CLUSTERPRO X 5.0 for Windows and earlier, EXPRESSCLUSTER X 5.0 for Windows and earlier, CLUSTERPRO X 5.0 SingleServerSafe for Windows and earlier, EXPRESSCLUSTER X 5.0 SingleServerSafe for Windows and earlier allows a remote unauthenticated attacker to overwrite existing files on the file system and to potentially execute arbitrary code.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
nec expresscluster_x_singleserversafe *
nec expresscluster_x *
CVE-2023-25011

PC settings tool Ver10.1.26.0 and earlier, PC settings tool Ver11.0.22.0 and earlier allows a attacker to write to the registry as administrator privileges with standard user privileges.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

Products Affected

Vendor Product Version
nec pc_settings_tool *
CVE-2023-3330

Improper Limitation of a Pathname to a Restricted Directory vulnerability in NEC Corporation Aterm WG2600HP2, WG2600HP, WG2200HP, WG1800HP2, WG1800HP, WG1400HP, WG600HP, WG300HP, WF300HP, WR9500N, WR9300N, WR8750N, WR8700N, WR8600N, WR8370N, WR8175N and WR8170N all versions allows a attacker to obtain specific files in the product.

Products Affected

Vendor Product Version
nec aterm_wr8750n_firmware -
nec aterm_wr8700n_firmware -
nec aterm_wr8370n_firmware -
nec aterm_wg300hp_firmware -
nec aterm_wg600hp_firmware -
nec aterm_wr8170n_firmware -
nec aterm_wf300hp_firmware -
nec aterm_wg1800hp2_firmware -
nec aterm_wr9500n_firmware -
nec aterm_wg2600hp_firmware -
nec aterm_wr9300n_firmware -
nec aterm_wg2600hp2_firmware -
nec aterm_wr8600n_firmware -
nec aterm_wr8175n_firmware -
nec aterm_wg2200hp_firmware -
nec aterm_wg1800hp_firmware -
nec aterm_wg1400hp_firmware -
CVE-2023-3331

Improper Limitation of a Pathname to a Restricted Directory vulnerability in NEC Corporation Aterm Aterm WG2600HP2, WG2600HP, WG2200HP, WG1800HP2, WG1800HP, WG1400HP, WG600HP, WG300HP, WF300HP, WR9500N, WR9300N, WR8750N, WR8700N, WR8600N, WR8370N, WR8175N and WR8170N all versions allows a attacker to delete specific files in the product.

Products Affected

Vendor Product Version
nec aterm_wr8750n_firmware -
nec aterm_wr8700n_firmware -
nec aterm_wr8370n_firmware -
nec aterm_wg300hp_firmware -
nec aterm_wg600hp_firmware -
nec aterm_wr8170n_firmware -
nec aterm_wf300hp_firmware -
nec aterm_wg1800hp2_firmware -
nec aterm_wr9500n_firmware -
nec aterm_wg2600hp_firmware -
nec aterm_wr9300n_firmware -
nec aterm_wg2600hp2_firmware -
nec aterm_wr8600n_firmware -
nec aterm_wr8175n_firmware -
nec aterm_wg2200hp_firmware -
nec aterm_wg1800hp_firmware -
nec aterm_wg1400hp_firmware -
CVE-2023-3332

Improper Neutralization of Input During Web Page Generation vulnerability in NEC Corporation Aterm Aterm WG2600HP2, WG2600HP, WG2200HP, WG1800HP2, WG1800HP, WG1400HP, WG600HP, WG300HP, WF300HP, WR9500N, WR9300N, WR8750N, WR8700N, WR8600N, WR8370N, WR8175N and WR8170N all versions allows a attacker to  execute an arbitrary script, after obtaining a high privilege exploiting CVE-2023-3330 and CVE-2023-3331 vulnerabilities.

Products Affected

Vendor Product Version
nec aterm_wr8750n_firmware -
nec aterm_wr8700n_firmware -
nec aterm_wr8370n_firmware -
nec aterm_wg300hp_firmware -
nec aterm_wg600hp_firmware -
nec aterm_wr8170n_firmware -
nec aterm_wf300hp_firmware -
nec aterm_wg1800hp2_firmware -
nec aterm_wr9500n_firmware -
nec aterm_wg2600hp_firmware -
nec aterm_wr9300n_firmware -
nec aterm_wg2600hp2_firmware -
nec aterm_wr8600n_firmware -
nec aterm_wr8175n_firmware -
nec aterm_wg2200hp_firmware -
nec aterm_wg1800hp_firmware -
nec aterm_wg1400hp_firmware -
CVE-2023-3333

Improper Neutralization of Special Elements used in an OS Command vulnerability in NEC Corporation Aterm WG2600HP2, WG2600HP, WG2200HP, WG1800HP2, WG1800HP, WG1400HP, WG600HP, WG300HP, WF300HP, WR9500N, WR9300N, WR8750N, WR8700N, WR8600N, WR8370N, WR8175N and WR8170N all versions allows a attacker to execute an arbitrary OS command with the root privilege, after obtaining a high privilege exploiting CVE-2023-3330 and CVE-2023-3331 vulnerabilities.

Products Affected

Vendor Product Version
nec aterm_wr8750n_firmware -
nec aterm_wr8700n_firmware -
nec aterm_wr8370n_firmware -
nec aterm_wg300hp_firmware -
nec aterm_wg600hp_firmware -
nec aterm_wr8170n_firmware -
nec aterm_wf300hp_firmware -
nec aterm_wg1800hp2_firmware -
nec aterm_wr9500n_firmware -
nec aterm_wg2600hp_firmware -
nec aterm_wr9300n_firmware -
nec aterm_wg2600hp2_firmware -
nec aterm_wr8600n_firmware -
nec aterm_wr8175n_firmware -
nec aterm_wg2200hp_firmware -
nec aterm_wg1800hp_firmware -
nec aterm_wg1400hp_firmware -
CVE-2023-3741

An OS Command injection vulnerability in NEC Platforms DT900 and DT900S Series all versions allows an attacker to execute any command on the device.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
nec itk-8lcx-1(bk)tel_firmware -
nec itk-32tcgs-1(bk)tel_firmware -
nec itk-12dg-1p(bk)tel_firmware -
nec itk-12d-1p(bk)tel_firmware -
nec itk-6d-1(bk)tel_firmware -
nec itk-6dgs-1a(bk)tel_firmware -
nec itk-6dgs-1(bk)tel_firmware -
nec itk-8tcgx-1(bk)tel_firmware -
nec itk-8lcg-1p(bk)tel_firmware -
nec itk-8tcgx-1p(bk)tel_firmware -
nec itk-32lcgs-1(bk)tel_firmware -
nec itk-6dgs-1p(bk)tel_firmware -
nec itk-6d-1p(bk)tel_firmware -
nec itk-32lcgs-1a(bk)tel_firmware -
nec itk-32tcgs-1p(bk)tel_firmware -
nec itk-8lcx-1p(bk)tel_firmware -
nec itk-32lcg-1p(bk)tel_firmware -
nec itk-32tcgs-1a(bk)tel_firmware -
nec itk-12d-1(bk)tel_firmware -
nec itk-32lcgs-1p(bk)tel_firmware -
nec itk-6dg-1p(bk)tel_firmware -
nec itk-32tcg-1p(bk)tel_firmware -
CVE-2023-39341

"FFRI yarai", "FFRI yarai Home and Business Edition" and their OEM products handle exceptional conditions improperly, which may lead to denial-of-service (DoS) condition. Affected products and versions are as follows: FFRI yarai versions 3.4.0 to 3.4.6 and 3.5.0, FFRI yarai Home and Business Edition version 1.4.0, InfoTrace Mark II Malware Protection (Mark II Zerona) versions 3.0.1 to 3.2.2, Zerona / Zerona PLUS versions 3.2.32 to 3.2.36, ActSecure χ versions 3.4.0 to 3.4.6 and 3.5.0, Dual Safe Powered by FFRI yarai version 1.4.1, EDR Plus Pack (Bundled FFRI yarai versions 3.4.0 to 3.4.6 and 3.5.0), and EDR Plus Pack Cloud (Bundled FFRI yarai versions 3.4.0 to 3.4.6 and 3.5.0).

Products Affected

Vendor Product Version
ffri ffri_yarai 1.4.0
skygroup edr_plus_pack_cloud 3.5.0
soliton zerona_plus *
skygroup edr_plus_pack *
nec actsecure_x_managed_security_service *
nec actsecure_x_managed_security_service 3.5.0
ffri ffri_yarai *
skygroup edr_plus_pack_cloud *
soliton infotrace_mark_ii_malware_protection *
soliton zerona *
ffri dual_safe 1.4.1
skygroup edr_plus_pack 3.5.0
ffri ffri_yarai 3.5.0
CVE-2023-39544

CLUSTERPRO X Ver5.1 and earlier and EXPRESSCLUSTER X 5.1 and earlier, CLUSTERPRO X SingleServerSafe 5.1 and earlier, EXPRESSCLUSTER X SingleServerSafe 5.1 and earlier allows a attacker to log in to the product may execute an arbitrary command.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
nec expresscluster_x 2.0
nec expresscluster_x 3.3
nec expresscluster_x 4.1
nec expresscluster_x_singleserversafe 3.0
nec expresscluster_x_singleserversafe 4.0
nec expresscluster_x_singleserversafe 3.1
nec expresscluster_x_singleserversafe 3.2
nec expresscluster_x_singleserversafe 4.1
nec expresscluster_x_singleserversafe 2.1
nec expresscluster_x_singleserversafe 5.1
nec expresscluster_x 2.1
nec expresscluster_x 5.0
nec expresscluster_x_singleserversafe 1.0
nec expresscluster_x_singleserversafe 4.2
nec expresscluster_x_singleserversafe 4.3
nec expresscluster_x 4.3
nec expresscluster_x 1.0
nec expresscluster_x_singleserversafe 2.0
nec expresscluster_x 5.1
nec expresscluster_x 3.1
nec expresscluster_x_singleserversafe 5.0
nec expresscluster_x 3.2
nec expresscluster_x 4.2
nec expresscluster_x 4.0
nec expresscluster_x 3.0
nec expresscluster_x_singleserversafe 3.3
CVE-2023-39545

CLUSTERPRO X Ver5.1 and earlier and EXPRESSCLUSTER X 5.1 and earlier, CLUSTERPRO X SingleServerSafe 5.1 and earlier, EXPRESSCLUSTER X SingleServerSafe 5.1 and earlier allows a attacker to log in to the product may execute an arbitrary command.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
nec expresscluster_x 2.0
nec expresscluster_x 3.3
nec expresscluster_x 4.1
nec expresscluster_x_singleserversafe 3.0
nec expresscluster_x_singleserversafe 4.0
nec expresscluster_x_singleserversafe 3.1
nec expresscluster_x_singleserversafe 3.2
nec expresscluster_x_singleserversafe 4.1
nec expresscluster_x_singleserversafe 2.1
nec expresscluster_x_singleserversafe 5.1
nec expresscluster_x 2.1
nec expresscluster_x 5.0
nec expresscluster_x_singleserversafe 1.0
nec expresscluster_x_singleserversafe 4.2
nec expresscluster_x_singleserversafe 4.3
nec expresscluster_x 4.3
nec expresscluster_x 1.0
nec expresscluster_x_singleserversafe 2.0
nec expresscluster_x 5.1
nec expresscluster_x 3.1
nec expresscluster_x_singleserversafe 5.0
nec expresscluster_x 3.2
nec expresscluster_x 4.2
nec expresscluster_x 4.0
nec expresscluster_x 3.0
nec expresscluster_x_singleserversafe 3.3
CVE-2023-39546

CLUSTERPRO X Ver5.1 and earlier and EXPRESSCLUSTER X 5.1 and earlier, CLUSTERPRO X SingleServerSafe 5.1 and earlier, EXPRESSCLUSTER X SingleServerSafe 5.1 and earlier allows a attacker to log in to the product may execute an arbitrary command.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
nec expresscluster_x 2.0
nec expresscluster_x 3.3
nec expresscluster_x 4.1
nec expresscluster_x_singleserversafe 3.0
nec expresscluster_x_singleserversafe 4.0
nec expresscluster_x_singleserversafe 3.1
nec expresscluster_x_singleserversafe 3.2
nec expresscluster_x_singleserversafe 4.1
nec expresscluster_x_singleserversafe 2.1
nec expresscluster_x_singleserversafe 5.1
nec expresscluster_x 2.1
nec expresscluster_x 5.0
nec expresscluster_x_singleserversafe 1.0
nec expresscluster_x_singleserversafe 4.2
nec expresscluster_x_singleserversafe 4.3
nec expresscluster_x 4.3
nec expresscluster_x 1.0
nec expresscluster_x_singleserversafe 2.0
nec expresscluster_x 5.1
nec expresscluster_x 3.1
nec expresscluster_x_singleserversafe 5.0
nec expresscluster_x 3.2
nec expresscluster_x 4.2
nec expresscluster_x 4.0
nec expresscluster_x 3.0
nec expresscluster_x_singleserversafe 3.3
CVE-2023-39547

CLUSTERPRO X Ver5.1 and earlier and EXPRESSCLUSTER X 5.1 and earlier, CLUSTERPRO X SingleServerSafe 5.1 and earlier, EXPRESSCLUSTER X SingleServerSafe 5.1 and earlier allows a attacker to log in to the product may execute an arbitrary command.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
nec expresscluster_x 2.0
nec expresscluster_x 3.3
nec expresscluster_x 4.1
nec expresscluster_x_singleserversafe 3.0
nec expresscluster_x_singleserversafe 4.0
nec expresscluster_x_singleserversafe 3.1
nec expresscluster_x_singleserversafe 3.2
nec expresscluster_x_singleserversafe 4.1
nec expresscluster_x_singleserversafe 2.1
nec expresscluster_x 2.1
nec expresscluster_x 5.0
nec expresscluster_x_singleserversafe 1.0
nec expresscluster_x_singleserversafe 4.2
nec expresscluster_x_singleserversafe 4.3
nec expresscluster_x 4.3
nec expresscluster_x 1.0
nec expresscluster_x_singleserversafe 2.0
nec expresscluster_x 3.1
nec expresscluster_x_singleserversafe 5.0
nec expresscluster_x 3.2
nec expresscluster_x 4.2
nec expresscluster_x 4.0
nec expresscluster_x 3.0
nec expresscluster_x_singleserversafe 3.3
CVE-2023-39548

CLUSTERPRO X Ver5.1 and earlier and EXPRESSCLUSTER X 5.1 and earlier, CLUSTERPRO X SingleServerSafe 5.1 and earlier, EXPRESSCLUSTER X SingleServerSafe 5.1 and earlier allows a attacker to log in to the product may execute an arbitrary command.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
nec expresscluster_x 2.0
nec expresscluster_x 3.3
nec expresscluster_x 4.1
nec expresscluster_x_singleserversafe 3.0
nec expresscluster_x_singleserversafe 4.0
nec expresscluster_x_singleserversafe 3.1
nec expresscluster_x_singleserversafe 3.2
nec expresscluster_x_singleserversafe 4.1
nec expresscluster_x_singleserversafe 2.1
nec expresscluster_x_singleserversafe 5.1
nec expresscluster_x 2.1
nec expresscluster_x 5.0
nec expresscluster_x_singleserversafe 1.0
nec expresscluster_x_singleserversafe 4.2
nec expresscluster_x_singleserversafe 4.3
nec expresscluster_x 4.3
nec expresscluster_x 1.0
nec expresscluster_x_singleserversafe 2.0
nec expresscluster_x 5.1
nec expresscluster_x 3.1
nec expresscluster_x_singleserversafe 5.0
nec expresscluster_x 3.2
nec expresscluster_x 4.2
nec expresscluster_x 4.0
nec expresscluster_x 3.0
nec expresscluster_x_singleserversafe 3.3
CVE-2024-28005

Aterm WG1800HP4, WG1200HS3, WG1900HP2, WG1200HP3, WG1800HP3, WG1200HS2, WG1900HP, WG1200HP2, W1200EX(-MS), WG1200HS, WG1200HP, WF300HP2, W300P, WF800HP, WR8165N, WG2200HP, WF1200HP2, WG1800HP2, WF1200HP, WG600HP, WG300HP, WF300HP, WG1800HP, WG1400HP, WR8175N, WR9300N, WR8750N, WR8160N, WR9500N, WR8600N, WR8370N, WR8170N, WR8700N, WR8300N, WR8150N, WR4100N, WR4500N, WR8100N, WR8500N, CR2500P, WR8400N, WR8200N, WR1200H, WR7870S, WR6670S, WR7850S, WR6650S, WR6600H, WR7800H, WM3400RN, WM3450RN, WM3500R, WM3600R, WM3800R, WR8166N, MR01LN MR02LN, WG1810HP(JE) and WG1810HP(MF) all versions allows a attacker who has obtained high privileges can execute arbitrary scripts.

Products Affected

Vendor Product Version
nec aterm_wg1200hs3_firmware -
nec aterm_mr02ln_firmware -
nec aterm_wr6600h_firmware -
nec aterm_wr7800h_firmware -
nec aterm_w1200ex-ms_firmware -
nec aterm_wg1200hs2_firmware -
nec aterm_wg1200hs_firmware -
nec aterm_wg1200hp_firmware -
nec aterm_wr8170n_firmware -
nec aterm_wm3600r_firmware -
nec aterm_wr4100n_firmware -
nec aterm_wr8150n_firmware -
nec aterm_wg1400hp_firmware -
nec aterm_wr4500n_firmware -
nec aterm_wg1800hp3_firmware -
nec aterm_wr8750n_firmware -
nec aterm_wm3800r_firmware -
nec aterm_wg1900hp2_firmware -
nec aterm_wg1200hp2_firmware -
nec aterm_wr7850s_firmware -
nec aterm_wr8700n_firmware -
nec aterm_wg1800hp4_firmware -
nec aterm_wm3500r_firmware -
nec aterm_wg600hp_firmware -
nec aterm_wr8400n_firmware -
nec aterm_wf300hp_firmware -
nec aterm_wr8160n_firmware -
nec aterm_wr8300n_firmware -
nec aterm_wg1810hp(mf)_firmware -
nec aterm_mr01ln_firmware -
nec aterm_wf1200hp_firmware -
nec aterm_wr6670s_firmware -
nec aterm_wm3450rn_firmware -
nec aterm_wr6650s_firmware -
nec aterm_wr9300n_firmware -
nec aterm_w300p_firmware -
nec aterm_wg2200hp_firmware -
nec aterm_wr1200h_firmware -
nec aterm_wg1800hp_firmware -
nec aterm_wf1200hp2_firmware -
nec aterm_cr2500p_firmware -
nec aterm_wf300hp2_firmware -
nec aterm_wg1810hp(je)_firmware -
nec aterm_wg1200hp3_firmware -
nec aterm_wr8100n_firmware -
nec aterm_wr8165n_firmware -
nec aterm_wr7870s_firmware -
nec aterm_wr8370n_firmware -
nec aterm_wr8200n_firmware -
nec aterm_wf800hp_firmware -
nec aterm_wg300hp_firmware -
nec aterm_wg1800hp2_firmware -
nec aterm_wr9500n_firmware -
nec aterm_wm3400rn_firmware -
nec aterm_wr8600n_firmware -
nec aterm_wr8175n_firmware -
nec aterm_wg1900hp_firmware -
nec aterm_wr8500n_firmware -
nec aterm_wr8166n_firmware -
CVE-2024-28006

Improper authentication vulnerability in NEC Corporation Aterm WG1800HP4, WG1200HS3, WG1900HP2, WG1200HP3, WG1800HP3, WG1200HS2, WG1900HP, WG1200HP2, W1200EX(-MS), WG1200HS, WG1200HP, WF300HP2, W300P, WF800HP, WR8165N, WG2200HP, WF1200HP2, WG1800HP2, WF1200HP, WG600HP, WG300HP, WF300HP, WG1800HP, WG1400HP, WR8175N, WR9300N, WR8750N, WR8160N, WR9500N, WR8600N, WR8370N, WR8170N, WR8700N, WR8300N, WR8150N, WR4100N, WR4500N, WR8100N, WR8500N, CR2500P, WR8400N, WR8200N, WR1200H, WR7870S, WR6670S, WR7850S, WR6650S, WR6600H, WR7800H, WM3400RN, WM3450RN, WM3500R, WM3600R, WM3800R, WR8166N, MR01LN MR02LN, WG1810HP(JE) and WG1810HP(MF) all versions allows a attacker to view device information.

Products Affected

Vendor Product Version
nec aterm_wg1200hs3_firmware -
nec aterm_mr02ln_firmware -
nec aterm_wr6600h_firmware -
nec aterm_wr7800h_firmware -
nec aterm_w1200ex-ms_firmware -
nec aterm_wg1200hs2_firmware -
nec aterm_wg1200hs_firmware -
nec aterm_wg1200hp_firmware -
nec aterm_wr8170n_firmware -
nec aterm_wm3600r_firmware -
nec aterm_wr4100n_firmware -
nec aterm_wr8150n_firmware -
nec aterm_wg1400hp_firmware -
nec aterm_wr4500n_firmware -
nec aterm_wg1800hp3_firmware -
nec aterm_wr8750n_firmware -
nec aterm_wm3800r_firmware -
nec aterm_wg1900hp2_firmware -
nec aterm_wg1200hp2_firmware -
nec aterm_wr7850s_firmware -
nec aterm_wr8700n_firmware -
nec aterm_wg1800hp4_firmware -
nec aterm_wm3500r_firmware -
nec aterm_wg600hp_firmware -
nec aterm_wr8400n_firmware -
nec aterm_wf300hp_firmware -
nec aterm_wr8160n_firmware -
nec aterm_wr8300n_firmware -
nec aterm_wg1810hp(mf)_firmware -
nec aterm_mr01ln_firmware -
nec aterm_wf1200hp_firmware -
nec aterm_wr6670s_firmware -
nec aterm_wm3450rn_firmware -
nec aterm_wr6650s_firmware -
nec aterm_wr9300n_firmware -
nec aterm_w300p_firmware -
nec aterm_wg2200hp_firmware -
nec aterm_wr1200h_firmware -
nec aterm_wg1800hp_firmware -
nec aterm_wf1200hp2_firmware -
nec aterm_cr2500p_firmware -
nec aterm_wf300hp2_firmware -
nec aterm_wg1810hp(je)_firmware -
nec aterm_wg1200hp3_firmware -
nec aterm_wr8100n_firmware -
nec aterm_wr8165n_firmware -
nec aterm_wr7870s_firmware -
nec aterm_wr8370n_firmware -
nec aterm_wr8200n_firmware -
nec aterm_wf800hp_firmware -
nec aterm_wg300hp_firmware -
nec aterm_wg1800hp2_firmware -
nec aterm_wr9500n_firmware -
nec aterm_wm3400rn_firmware -
nec aterm_wr8600n_firmware -
nec aterm_wr8175n_firmware -
nec aterm_wg1900hp_firmware -
nec aterm_wr8500n_firmware -
nec aterm_wr8166n_firmware -
CVE-2024-28007

Improper authentication vulnerability in NEC Corporation Aterm WG1800HP4, WG1200HS3, WG1900HP2, WG1200HP3, WG1800HP3, WG1200HS2, WG1900HP, WG1200HP2, W1200EX(-MS), WG1200HS, WG1200HP, WF300HP2, W300P, WF800HP, WR8165N, WG2200HP, WF1200HP2, WG1800HP2, WF1200HP, WG600HP, WG300HP, WF300HP, WG1800HP, WG1400HP, WR8175N, WR9300N, WR8750N, WR8160N, WR9500N, WR8600N, WR8370N, WR8170N, WR8700N, WR8300N, WR8150N, WR4100N, WR4500N, WR8100N, WR8500N, CR2500P, WR8400N, WR8200N, WR1200H, WR7870S, WR6670S, WR7850S, WR6650S, WR6600H, WR7800H, WM3400RN, WM3450RN, WM3500R, WM3600R, WM3800R, WR8166N, MR01LN MR02LN, WG1810HP(JE) and WG1810HP(MF) all versions allows a attacker to execute an arbitrary command with the root privilege via the internet.

Products Affected

Vendor Product Version
nec aterm_wg1200hs3_firmware -
nec aterm_mr02ln_firmware -
nec aterm_wr6600h_firmware -
nec aterm_wr7800h_firmware -
nec aterm_w1200ex-ms_firmware -
nec aterm_wg1200hs2_firmware -
nec aterm_wg1200hs_firmware -
nec aterm_wg1200hp_firmware -
nec aterm_wr8170n_firmware -
nec aterm_wm3600r_firmware -
nec aterm_wr4100n_firmware -
nec aterm_wr8150n_firmware -
nec aterm_wg1400hp_firmware -
nec aterm_wr4500n_firmware -
nec aterm_wg1800hp3_firmware -
nec aterm_wr8750n_firmware -
nec aterm_wm3800r_firmware -
nec aterm_wg1900hp2_firmware -
nec aterm_wg1200hp2_firmware -
nec aterm_wr7850s_firmware -
nec aterm_wr8700n_firmware -
nec aterm_wg1800hp4_firmware -
nec aterm_wm3500r_firmware -
nec aterm_wg600hp_firmware -
nec aterm_wr8400n_firmware -
nec aterm_wf300hp_firmware -
nec aterm_wr8160n_firmware -
nec aterm_wr8300n_firmware -
nec aterm_wg1810hp(mf)_firmware -
nec aterm_mr01ln_firmware -
nec aterm_wf1200hp_firmware -
nec aterm_wr6670s_firmware -
nec aterm_wm3450rn_firmware -
nec aterm_wr6650s_firmware -
nec aterm_wr9300n_firmware -
nec aterm_w300p_firmware -
nec aterm_wg2200hp_firmware -
nec aterm_wr1200h_firmware -
nec aterm_wg1800hp_firmware -
nec aterm_wf1200hp2_firmware -
nec aterm_cr2500p_firmware -
nec aterm_wf300hp2_firmware -
nec aterm_wg1810hp(je)_firmware -
nec aterm_wg1200hp3_firmware -
nec aterm_wr8100n_firmware -
nec aterm_wr8165n_firmware -
nec aterm_wr7870s_firmware -
nec aterm_wr8370n_firmware -
nec aterm_wr8200n_firmware -
nec aterm_wf800hp_firmware -
nec aterm_wg300hp_firmware -
nec aterm_wg1800hp2_firmware -
nec aterm_wr9500n_firmware -
nec aterm_wm3400rn_firmware -
nec aterm_wr8600n_firmware -
nec aterm_wr8175n_firmware -
nec aterm_wg1900hp_firmware -
nec aterm_wr8500n_firmware -
nec aterm_wr8166n_firmware -
CVE-2024-28008

Active Debug Code in NEC Corporation Aterm WG1800HP4, WG1200HS3, WG1900HP2, WG1200HP3, WG1800HP3, WG1200HS2, WG1900HP, WG1200HP2, W1200EX(-MS), WG1200HS, WG1200HP, WF300HP2, W300P, WF800HP, WR8165N, WG2200HP, WF1200HP2, WG1800HP2, WF1200HP, WG600HP, WG300HP, WF300HP, WG1800HP, WG1400HP, WR8175N, WR9300N, WR8750N, WR8160N, WR9500N, WR8600N, WR8370N, WR8170N, WR8700N, WR8300N, WR8150N, WR4100N, WR4500N, WR8100N, WR8500N, CR2500P, WR8400N, WR8200N, WR1200H, WR7870S, WR6670S, WR7850S, WR6650S, WR6600H, WR7800H, WM3400RN, WM3450RN, WM3500R, WM3600R, WM3800R, WR8166N, MR01LN MR02LN, WG1810HP(JE) and WG1810HP(MF) all versions allows a attacker to execute an arbitrary OS command via the internet.

Products Affected

Vendor Product Version
nec aterm_wg1200hs3_firmware -
nec aterm_mr02ln_firmware -
nec aterm_wr6600h_firmware -
nec aterm_wr7800h_firmware -
nec aterm_w1200ex-ms_firmware -
nec aterm_wg1200hs2_firmware -
nec aterm_wg1200hs_firmware -
nec aterm_wg1200hp_firmware -
nec aterm_wr8170n_firmware -
nec aterm_wm3600r_firmware -
nec aterm_wr4100n_firmware -
nec aterm_wr8150n_firmware -
nec aterm_wg1400hp_firmware -
nec aterm_wr4500n_firmware -
nec aterm_wg1800hp3_firmware -
nec aterm_wr8750n_firmware -
nec aterm_wm3800r_firmware -
nec aterm_wg1900hp2_firmware -
nec aterm_wg1200hp2_firmware -
nec aterm_wr7850s_firmware -
nec aterm_wr8700n_firmware -
nec aterm_wg1800hp4_firmware -
nec aterm_wm3500r_firmware -
nec aterm_wg600hp_firmware -
nec aterm_wr8400n_firmware -
nec aterm_wf300hp_firmware -
nec aterm_wr8160n_firmware -
nec aterm_wr8300n_firmware -
nec aterm_wg1810hp(mf)_firmware -
nec aterm_mr01ln_firmware -
nec aterm_wf1200hp_firmware -
nec aterm_wr6670s_firmware -
nec aterm_wm3450rn_firmware -
nec aterm_wr6650s_firmware -
nec aterm_wr9300n_firmware -
nec aterm_w300p_firmware -
nec aterm_wg2200hp_firmware -
nec aterm_wr1200h_firmware -
nec aterm_wg1800hp_firmware -
nec aterm_wf1200hp2_firmware -
nec aterm_cr2500p_firmware -
nec aterm_wf300hp2_firmware -
nec aterm_wg1810hp(je)_firmware -
nec aterm_wg1200hp3_firmware -
nec aterm_wr8100n_firmware -
nec aterm_wr8165n_firmware -
nec aterm_wr7870s_firmware -
nec aterm_wr8370n_firmware -
nec aterm_wr8200n_firmware -
nec aterm_wf800hp_firmware -
nec aterm_wg300hp_firmware -
nec aterm_wg1800hp2_firmware -
nec aterm_wr9500n_firmware -
nec aterm_wm3400rn_firmware -
nec aterm_wr8600n_firmware -
nec aterm_wr8175n_firmware -
nec aterm_wg1900hp_firmware -
nec aterm_wr8500n_firmware -
nec aterm_wr8166n_firmware -
CVE-2024-28009

Improper authentication vulnerability in NEC Corporation Aterm WG1800HP4, WG1200HS3, WG1900HP2, WG1200HP3, WG1800HP3, WG1200HS2, WG1900HP, WG1200HP2, W1200EX(-MS), WG1200HS, WG1200HP, WF300HP2, W300P, WF800HP, WR8165N, WG2200HP, WF1200HP2, WG1800HP2, WF1200HP, WG600HP, WG300HP, WF300HP, WG1800HP, WG1400HP, WR8175N, WR9300N, WR8750N, WR8160N, WR9500N, WR8600N, WR8370N, WR8170N, WR8700N, WR8300N, WR8150N, WR4100N, WR4500N, WR8100N, WR8500N, CR2500P, WR8400N, WR8200N, WR1200H, WR7870S, WR6670S, WR7850S, WR6650S, WR6600H, WR7800H, WM3400RN, WM3450RN, WM3500R, WM3600R, WM3800R, WR8166N, MR01LN MR02LN, WG1810HP(JE) and WG1810HP(MF) all versions allows a attacker to execute an arbitrary command with the root privilege via the internet.

Products Affected

Vendor Product Version
nec aterm_wg1200hs3_firmware -
nec aterm_mr02ln_firmware -
nec aterm_wr6600h_firmware -
nec aterm_wr7800h_firmware -
nec aterm_w1200ex-ms_firmware -
nec aterm_wg1200hs2_firmware -
nec aterm_wg1200hs_firmware -
nec aterm_wg1200hp_firmware -
nec aterm_wr8170n_firmware -
nec aterm_wm3600r_firmware -
nec aterm_wr4100n_firmware -
nec aterm_wr8150n_firmware -
nec aterm_wg1400hp_firmware -
nec aterm_wr4500n_firmware -
nec aterm_wg1800hp3_firmware -
nec aterm_wr8750n_firmware -
nec aterm_wm3800r_firmware -
nec aterm_wg1900hp2_firmware -
nec aterm_wg1200hp2_firmware -
nec aterm_wr7850s_firmware -
nec aterm_wr8700n_firmware -
nec aterm_wg1800hp4_firmware -
nec aterm_wm3500r_firmware -
nec aterm_wg600hp_firmware -
nec aterm_wr8400n_firmware -
nec aterm_wf300hp_firmware -
nec aterm_wr8160n_firmware -
nec aterm_wr8300n_firmware -
nec aterm_wg1810hp(mf)_firmware -
nec aterm_mr01ln_firmware -
nec aterm_wf1200hp_firmware -
nec aterm_wr6670s_firmware -
nec aterm_wm3450rn_firmware -
nec aterm_wr6650s_firmware -
nec aterm_wr9300n_firmware -
nec aterm_w300p_firmware -
nec aterm_wg2200hp_firmware -
nec aterm_wr1200h_firmware -
nec aterm_wg1800hp_firmware -
nec aterm_wf1200hp2_firmware -
nec aterm_cr2500p_firmware -
nec aterm_wf300hp2_firmware -
nec aterm_wg1810hp(je)_firmware -
nec aterm_wg1200hp3_firmware -
nec aterm_wr8100n_firmware -
nec aterm_wr8165n_firmware -
nec aterm_wr7870s_firmware -
nec aterm_wr8370n_firmware -
nec aterm_wr8200n_firmware -
nec aterm_wf800hp_firmware -
nec aterm_wg300hp_firmware -
nec aterm_wg1800hp2_firmware -
nec aterm_wr9500n_firmware -
nec aterm_wm3400rn_firmware -
nec aterm_wr8600n_firmware -
nec aterm_wr8175n_firmware -
nec aterm_wg1900hp_firmware -
nec aterm_wr8500n_firmware -
nec aterm_wr8166n_firmware -
CVE-2024-28010

Use of Hard-coded Password in NEC Corporation Aterm WG1800HP4, WG1200HS3, WG1900HP2, WG1200HP3, WG1800HP3, WG1200HS2, WG1900HP, WG1200HP2, W1200EX(-MS), WG1200HS, WG1200HP, WF300HP2, W300P, WF800HP, WR8165N, WG2200HP, WF1200HP2, WG1800HP2, WF1200HP, WG600HP, WG300HP, WF300HP, WG1800HP, WG1400HP, WR8175N, WR9300N, WR8750N, WR8160N, WR9500N, WR8600N, WR8370N, WR8170N, WR8700N, WR8300N, WR8150N, WR4100N, WR4500N, WR8100N, WR8500N, CR2500P, WR8400N, WR8200N, WR1200H, WR7870S, WR6670S, WR7850S, WR6650S, WR6600H, WR7800H, WM3400RN, WM3450RN, WM3500R, WM3600R, WM3800R, WR8166N, MR01LN MR02LN, WG1810HP(JE) and WG1810HP(MF) all versions allows a attacker to execute an arbitrary OS command via the internet.

Products Affected

Vendor Product Version
nec aterm_wg1200hs3_firmware -
nec aterm_mr02ln_firmware -
nec aterm_wr6600h_firmware -
nec aterm_wr7800h_firmware -
nec aterm_w1200ex-ms_firmware -
nec aterm_wg1200hs2_firmware -
nec aterm_wg1200hs_firmware -
nec aterm_wg1200hp_firmware -
nec aterm_wr8170n_firmware -
nec aterm_wm3600r_firmware -
nec aterm_wr4100n_firmware -
nec aterm_wr8150n_firmware -
nec aterm_wg1400hp_firmware -
nec aterm_wr4500n_firmware -
nec aterm_wg1800hp3_firmware -
nec aterm_wr8750n_firmware -
nec aterm_wm3800r_firmware -
nec aterm_wg1900hp2_firmware -
nec aterm_wg1200hp2_firmware -
nec aterm_wr7850s_firmware -
nec aterm_wr8700n_firmware -
nec aterm_wg1800hp4_firmware -
nec aterm_wm3500r_firmware -
nec aterm_wg600hp_firmware -
nec aterm_wr8400n_firmware -
nec aterm_wf300hp_firmware -
nec aterm_wr8160n_firmware -
nec aterm_wr8300n_firmware -
nec aterm_wg1810hp(mf)_firmware -
nec aterm_mr01ln_firmware -
nec aterm_wf1200hp_firmware -
nec aterm_wr6670s_firmware -
nec aterm_wm3450rn_firmware -
nec aterm_wr6650s_firmware -
nec aterm_wr9300n_firmware -
nec aterm_w300p_firmware -
nec aterm_wg2200hp_firmware -
nec aterm_wr1200h_firmware -
nec aterm_wg1800hp_firmware -
nec aterm_wf1200hp2_firmware -
nec aterm_cr2500p_firmware -
nec aterm_wf300hp2_firmware -
nec aterm_wg1810hp(je)_firmware -
nec aterm_wg1200hp3_firmware -
nec aterm_wr8100n_firmware -
nec aterm_wr8165n_firmware -
nec aterm_wr7870s_firmware -
nec aterm_wr8370n_firmware -
nec aterm_wr8200n_firmware -
nec aterm_wf800hp_firmware -
nec aterm_wg300hp_firmware -
nec aterm_wg1800hp2_firmware -
nec aterm_wr9500n_firmware -
nec aterm_wm3400rn_firmware -
nec aterm_wr8600n_firmware -
nec aterm_wr8175n_firmware -
nec aterm_wg1900hp_firmware -
nec aterm_wr8500n_firmware -
nec aterm_wr8166n_firmware -
CVE-2024-28011

Hidden Functionality vulnerability in NEC Corporation Aterm WG1800HP4, WG1200HS3, WG1900HP2, WG1200HP3, WG1800HP3, WG1200HS2, WG1900HP, WG1200HP2, W1200EX(-MS), WG1200HS, WG1200HP, WF300HP2, W300P, WF800HP, WR8165N, WG2200HP, WF1200HP2, WG1800HP2, WF1200HP, WG600HP, WG300HP, WF300HP, WG1800HP, WG1400HP, WR8175N, WR9300N, WR8750N, WR8160N, WR9500N, WR8600N, WR8370N, WR8170N, WR8700N, WR8300N, WR8150N, WR4100N, WR4500N, WR8100N, WR8500N, CR2500P, WR8400N, WR8200N, WR1200H, WR7870S, WR6670S, WR7850S, WR6650S, WR6600H, WR7800H, WM3400RN, WM3450RN, WM3500R, WM3600R, WM3800R, WR8166N, MR01LN MR02LN, WG1810HP(JE) and WG1810HP(MF) all versions allows a attacker to execute an arbitrary OS command with the root privilege via the internet

Products Affected

Vendor Product Version
nec aterm_wg1200hs3_firmware -
nec aterm_mr02ln_firmware -
nec aterm_wr6600h_firmware -
nec aterm_wr7800h_firmware -
nec aterm_w1200ex-ms_firmware -
nec aterm_wg1200hs2_firmware -
nec aterm_wg1200hs_firmware -
nec aterm_wg1200hp_firmware -
nec aterm_wr8170n_firmware -
nec aterm_wm3600r_firmware -
nec aterm_wr4100n_firmware -
nec aterm_wr8150n_firmware -
nec aterm_wg1400hp_firmware -
nec aterm_wr4500n_firmware -
nec aterm_wg1800hp3_firmware -
nec aterm_wr8750n_firmware -
nec aterm_wm3800r_firmware -
nec aterm_wg1900hp2_firmware -
nec aterm_wg1200hp2_firmware -
nec aterm_wr7850s_firmware -
nec aterm_wr8700n_firmware -
nec aterm_wg1800hp4_firmware -
nec aterm_wm3500r_firmware -
nec aterm_wg600hp_firmware -
nec aterm_wr8400n_firmware -
nec aterm_wf300hp_firmware -
nec aterm_wr8160n_firmware -
nec aterm_wr8300n_firmware -
nec aterm_wg1810hp(mf)_firmware -
nec aterm_mr01ln_firmware -
nec aterm_wf1200hp_firmware -
nec aterm_wr6670s_firmware -
nec aterm_wm3450rn_firmware -
nec aterm_wr6650s_firmware -
nec aterm_wr9300n_firmware -
nec aterm_w300p_firmware -
nec aterm_wg2200hp_firmware -
nec aterm_wr1200h_firmware -
nec aterm_wg1800hp_firmware -
nec aterm_wf1200hp2_firmware -
nec aterm_cr2500p_firmware -
nec aterm_wf300hp2_firmware -
nec aterm_wg1810hp(je)_firmware -
nec aterm_wg1200hp3_firmware -
nec aterm_wr8100n_firmware -
nec aterm_wr8165n_firmware -
nec aterm_wr7870s_firmware -
nec aterm_wr8370n_firmware -
nec aterm_wr8200n_firmware -
nec aterm_wf800hp_firmware -
nec aterm_wg300hp_firmware -
nec aterm_wg1800hp2_firmware -
nec aterm_wr9500n_firmware -
nec aterm_wm3400rn_firmware -
nec aterm_wr8600n_firmware -
nec aterm_wr8175n_firmware -
nec aterm_wg1900hp_firmware -
nec aterm_wr8500n_firmware -
nec aterm_wr8166n_firmware -
CVE-2024-28012

Improper authentication vulnerability in NEC Corporation Aterm WG1800HP4, WG1200HS3, WG1900HP2, WG1200HP3, WG1800HP3, WG1200HS2, WG1900HP, WG1200HP2, W1200EX(-MS), WG1200HS, WG1200HP, WF300HP2, W300P, WF800HP, WR8165N, WG2200HP, WF1200HP2, WG1800HP2, WF1200HP, WG600HP, WG300HP, WF300HP, WG1800HP, WG1400HP, WR8175N, WR9300N, WR8750N, WR8160N, WR9500N, WR8600N, WR8370N, WR8170N, WR8700N, WR8300N, WR8150N, WR4100N, WR4500N, WR8100N, WR8500N, CR2500P, WR8400N, WR8200N, WR1200H, WR7870S, WR6670S, WR7850S, WR6650S, WR6600H, WR7800H, WM3400RN, WM3450RN, WM3500R, WM3600R, WM3800R, WR8166N, MR01LN MR02LN, WG1810HP(JE) and WG1810HP(MF) all versions allows a attacker to execute an arbitrary command with the root privilege via the internet.

Products Affected

Vendor Product Version
nec aterm_wg1200hs3_firmware -
nec aterm_mr02ln_firmware -
nec aterm_wr6600h_firmware -
nec aterm_wr7800h_firmware -
nec aterm_w1200ex-ms_firmware -
nec aterm_wg1200hs2_firmware -
nec aterm_wg1200hs_firmware -
nec aterm_wg1200hp_firmware -
nec aterm_wr8170n_firmware -
nec aterm_wm3600r_firmware -
nec aterm_wr4100n_firmware -
nec aterm_wr8150n_firmware -
nec aterm_wg1400hp_firmware -
nec aterm_wr4500n_firmware -
nec aterm_wg1800hp3_firmware -
nec aterm_wr8750n_firmware -
nec aterm_wm3800r_firmware -
nec aterm_wg1900hp2_firmware -
nec aterm_wg1200hp2_firmware -
nec aterm_wr7850s_firmware -
nec aterm_wr8700n_firmware -
nec aterm_wg1800hp4_firmware -
nec aterm_wm3500r_firmware -
nec aterm_wg600hp_firmware -
nec aterm_wr8400n_firmware -
nec aterm_wf300hp_firmware -
nec aterm_wr8160n_firmware -
nec aterm_wr8300n_firmware -
nec aterm_wg1810hp(mf)_firmware -
nec aterm_mr01ln_firmware -
nec aterm_wf1200hp_firmware -
nec aterm_wr6670s_firmware -
nec aterm_wm3450rn_firmware -
nec aterm_wr6650s_firmware -
nec aterm_wr9300n_firmware -
nec aterm_w300p_firmware -
nec aterm_wg2200hp_firmware -
nec aterm_wr1200h_firmware -
nec aterm_wg1800hp_firmware -
nec aterm_wf1200hp2_firmware -
nec aterm_cr2500p_firmware -
nec aterm_wf300hp2_firmware -
nec aterm_wg1810hp(je)_firmware -
nec aterm_wg1200hp3_firmware -
nec aterm_wr8100n_firmware -
nec aterm_wr8165n_firmware -
nec aterm_wr7870s_firmware -
nec aterm_wr8370n_firmware -
nec aterm_wr8200n_firmware -
nec aterm_wf800hp_firmware -
nec aterm_wg300hp_firmware -
nec aterm_wg1800hp2_firmware -
nec aterm_wr9500n_firmware -
nec aterm_wm3400rn_firmware -
nec aterm_wr8600n_firmware -
nec aterm_wr8175n_firmware -
nec aterm_wg1900hp_firmware -
nec aterm_wr8500n_firmware -
nec aterm_wr8166n_firmware -
CVE-2024-28013

Use of Insufficiently Random Values vulnerability in NEC Corporation Aterm WG1800HP4, WG1200HS3, WG1900HP2, WG1200HP3, WG1800HP3, WG1200HS2, WG1900HP, WG1200HP2, W1200EX(-MS), WG1200HS, WG1200HP, WF300HP2, W300P, WF800HP, WR8165N, WG2200HP, WF1200HP2, WG1800HP2, WF1200HP, WG600HP, WG300HP, WF300HP, WG1800HP, WG1400HP, WR8175N, WR9300N, WR8750N, WR8160N, WR9500N, WR8600N, WR8370N, WR8170N, WR8700N, WR8300N, WR8150N, WR4100N, WR4500N, WR8100N, WR8500N, CR2500P, WR8400N, WR8200N, WR1200H, WR7870S, WR6670S, WR7850S, WR6650S, WR6600H, WR7800H, WM3400RN, WM3450RN, WM3500R, WM3600R, WM3800R, WR8166N, MR01LN MR02LN, WG1810HP(JE) and WG1810HP(MF) all versions allows a attacker to change settings via the internet.

Products Affected

Vendor Product Version
nec aterm_wg1200hs3_firmware -
nec aterm_mr02ln_firmware -
nec aterm_wr6600h_firmware -
nec aterm_wr7800h_firmware -
nec aterm_w1200ex-ms_firmware -
nec aterm_wg1200hs2_firmware -
nec aterm_wg1200hs_firmware -
nec aterm_wg1200hp_firmware -
nec aterm_wr8170n_firmware -
nec aterm_wm3600r_firmware -
nec aterm_wr4100n_firmware -
nec aterm_wr8150n_firmware -
nec aterm_wg1400hp_firmware -
nec aterm_wr4500n_firmware -
nec aterm_wg1800hp3_firmware -
nec aterm_wr8750n_firmware -
nec aterm_wm3800r_firmware -
nec aterm_wg1900hp2_firmware -
nec aterm_wg1200hp2_firmware -
nec aterm_wr7850s_firmware -
nec aterm_wr8700n_firmware -
nec aterm_wg1800hp4_firmware -
nec aterm_wm3500r_firmware -
nec aterm_wg600hp_firmware -
nec aterm_wr8400n_firmware -
nec aterm_wf300hp_firmware -
nec aterm_wr8160n_firmware -
nec aterm_wr8300n_firmware -
nec aterm_wg1810hp(mf)_firmware -
nec aterm_mr01ln_firmware -
nec aterm_wf1200hp_firmware -
nec aterm_wr6670s_firmware -
nec aterm_wm3450rn_firmware -
nec aterm_wr6650s_firmware -
nec aterm_wr9300n_firmware -
nec aterm_w300p_firmware -
nec aterm_wg2200hp_firmware -
nec aterm_wr1200h_firmware -
nec aterm_wg1800hp_firmware -
nec aterm_wf1200hp2_firmware -
nec aterm_cr2500p_firmware -
nec aterm_wf300hp2_firmware -
nec aterm_wg1810hp(je)_firmware -
nec aterm_wg1200hp3_firmware -
nec aterm_wr8100n_firmware -
nec aterm_wr8165n_firmware -
nec aterm_wr7870s_firmware -
nec aterm_wr8370n_firmware -
nec aterm_wr8200n_firmware -
nec aterm_wf800hp_firmware -
nec aterm_wg300hp_firmware -
nec aterm_wg1800hp2_firmware -
nec aterm_wr9500n_firmware -
nec aterm_wm3400rn_firmware -
nec aterm_wr8600n_firmware -
nec aterm_wr8175n_firmware -
nec aterm_wg1900hp_firmware -
nec aterm_wr8500n_firmware -
nec aterm_wr8166n_firmware -
CVE-2024-28014

Stack-based Buffer Overflow vulnerability in NEC Corporation Aterm WG1800HP4, WG1200HS3, WG1900HP2, WG1200HP3, WG1800HP3, WG1200HS2, WG1900HP, WG1200HP2, W1200EX(-MS), WG1200HS, WG1200HP, WF300HP2, W300P, WF800HP, WR8165N, WG2200HP, WF1200HP2, WG1800HP2, WF1200HP, WG600HP, WG300HP, WF300HP, WG1800HP, WG1400HP, WR8175N, WR9300N, WR8750N, WR8160N, WR9500N, WR8600N, WR8370N, WR8170N, WR8700N, WR8300N, WR8150N, WR4100N, WR4500N, WR8100N, WR8500N, CR2500P, WR8400N, WR8200N, WR1200H, WR7870S, WR6670S, WR7850S, WR6650S, WR6600H, WR7800H, WM3400RN, WM3450RN, WM3500R, WM3600R, WM3800R, WR8166N, MR01LN MR02LN, WG1810HP(JE) and WG1810HP(MF) all versions allows a attacker to execute an arbitrary command via the internet.

Products Affected

Vendor Product Version
nec aterm_wg1200hs3_firmware -
nec aterm_mr02ln_firmware -
nec aterm_wr6600h_firmware -
nec aterm_wr7800h_firmware -
nec aterm_w1200ex-ms_firmware -
nec aterm_wg1200hs2_firmware -
nec aterm_wg1200hs_firmware -
nec aterm_wg1200hp_firmware -
nec aterm_wr8170n_firmware -
nec aterm_wm3600r_firmware -
nec aterm_wr4100n_firmware -
nec aterm_wr8150n_firmware -
nec aterm_wg1400hp_firmware -
nec aterm_wr4500n_firmware -
nec aterm_wg1800hp3_firmware -
nec aterm_wr8750n_firmware -
nec aterm_wm3800r_firmware -
nec aterm_wg1900hp2_firmware -
nec aterm_wg1200hp2_firmware -
nec aterm_wr7850s_firmware -
nec aterm_wr8700n_firmware -
nec aterm_wg1800hp4_firmware -
nec aterm_wm3500r_firmware -
nec aterm_wg600hp_firmware -
nec aterm_wr8400n_firmware -
nec aterm_wf300hp_firmware -
nec aterm_wr8160n_firmware -
nec aterm_wr8300n_firmware -
nec aterm_wg1810hp(mf)_firmware -
nec aterm_mr01ln_firmware -
nec aterm_wf1200hp_firmware -
nec aterm_wr6670s_firmware -
nec aterm_wm3450rn_firmware -
nec aterm_wr6650s_firmware -
nec aterm_wr9300n_firmware -
nec aterm_w300p_firmware -
nec aterm_wg2200hp_firmware -
nec aterm_wr1200h_firmware -
nec aterm_wg1800hp_firmware -
nec aterm_wf1200hp2_firmware -
nec aterm_cr2500p_firmware -
nec aterm_wf300hp2_firmware -
nec aterm_wg1810hp(je)_firmware -
nec aterm_wg1200hp3_firmware -
nec aterm_wr8100n_firmware -
nec aterm_wr8165n_firmware -
nec aterm_wr7870s_firmware -
nec aterm_wr8370n_firmware -
nec aterm_wr8200n_firmware -
nec aterm_wf800hp_firmware -
nec aterm_wg300hp_firmware -
nec aterm_wg1800hp2_firmware -
nec aterm_wr9500n_firmware -
nec aterm_wm3400rn_firmware -
nec aterm_wr8600n_firmware -
nec aterm_wr8175n_firmware -
nec aterm_wg1900hp_firmware -
nec aterm_wr8500n_firmware -
nec aterm_wr8166n_firmware -
CVE-2024-28015

Improper Neutralization of Special Elements used in an OS Command vulnerability in NEC Corporation Aterm WG1800HP4, WG1200HS3, WG1900HP2, WG1200HP3, WG1800HP3, WG1200HS2, WG1900HP, WG1200HP2, W1200EX(-MS), WG1200HS, WG1200HP, WF300HP2, W300P, WF800HP, WR8165N, WG2200HP, WF1200HP2, WG1800HP2, WF1200HP, WG600HP, WG300HP, WF300HP, WG1800HP, WG1400HP, WR8175N, WR9300N, WR8750N, WR8160N, WR9500N, WR8600N, WR8370N, WR8170N, WR8700N, WR8300N, WR8150N, WR4100N, WR4500N, WR8100N, WR8500N, CR2500P, WR8400N, WR8200N, WR1200H, WR7870S, WR6670S, WR7850S, WR6650S, WR6600H, WR7800H, WM3400RN, WM3450RN, WM3500R, WM3600R, WM3800R, WR8166N, MR01LN MR02LN, WG1810HP(JE) and WG1810HP(MF) all versions allows a attacker to execute an arbitrary OS command with the root privilege via the internet.

Products Affected

Vendor Product Version
nec aterm_wg1200hs3_firmware -
nec aterm_mr02ln_firmware -
nec aterm_wr6600h_firmware -
nec aterm_wr7800h_firmware -
nec aterm_w1200ex-ms_firmware -
nec aterm_wg1200hs2_firmware -
nec aterm_wg1200hs_firmware -
nec aterm_wg1200hp_firmware -
nec aterm_wr8170n_firmware -
nec aterm_wm3600r_firmware -
nec aterm_wr4100n_firmware -
nec aterm_wr8150n_firmware -
nec aterm_wg1400hp_firmware -
nec aterm_wr4500n_firmware -
nec aterm_wg1800hp3_firmware -
nec aterm_wr8750n_firmware -
nec aterm_wm3800r_firmware -
nec aterm_wg1900hp2_firmware -
nec aterm_wg1200hp2_firmware -
nec aterm_wr7850s_firmware -
nec aterm_wr8700n_firmware -
nec aterm_wg1800hp4_firmware -
nec aterm_wm3500r_firmware -
nec aterm_wg600hp_firmware -
nec aterm_wr8400n_firmware -
nec aterm_wf300hp_firmware -
nec aterm_wr8160n_firmware -
nec aterm_wr8300n_firmware -
nec aterm_wg1810hp(mf)_firmware -
nec aterm_mr01ln_firmware -
nec aterm_wf1200hp_firmware -
nec aterm_wr6670s_firmware -
nec aterm_wm3450rn_firmware -
nec aterm_wr6650s_firmware -
nec aterm_wr9300n_firmware -
nec aterm_w300p_firmware -
nec aterm_wg2200hp_firmware -
nec aterm_wr1200h_firmware -
nec aterm_wg1800hp_firmware -
nec aterm_wf1200hp2_firmware -
nec aterm_cr2500p_firmware -
nec aterm_wf300hp2_firmware -
nec aterm_wg1810hp(je)_firmware -
nec aterm_wg1200hp3_firmware -
nec aterm_wr8100n_firmware -
nec aterm_wr8165n_firmware -
nec aterm_wr7870s_firmware -
nec aterm_wr8370n_firmware -
nec aterm_wr8200n_firmware -
nec aterm_wf800hp_firmware -
nec aterm_wg300hp_firmware -
nec aterm_wg1800hp2_firmware -
nec aterm_wr9500n_firmware -
nec aterm_wm3400rn_firmware -
nec aterm_wr8600n_firmware -
nec aterm_wr8175n_firmware -
nec aterm_wg1900hp_firmware -
nec aterm_wr8500n_firmware -
nec aterm_wr8166n_firmware -
CVE-2024-28016

Improper Access Controlvulnerability in NEC Corporation Aterm WG1800HP4, WG1200HS3, WG1900HP2, WG1200HP3, WG1800HP3, WG1200HS2, WG1900HP, WG1200HP2, W1200EX(-MS), WG1200HS, WG1200HP, WF300HP2, W300P, WF800HP, WR8165N, WG2200HP, WF1200HP2, WG1800HP2, WF1200HP, WG600HP, WG300HP, WF300HP, WG1800HP, WG1400HP, WR8175N, WR9300N, WR8750N, WR8160N, WR9500N, WR8600N, WR8370N, WR8170N, WR8700N, WR8300N, WR8150N, WR4100N, WR4500N, WR8100N, WR8500N, CR2500P, WR8400N, WR8200N, WR1200H, WR7870S, WR6670S, WR7850S, WR6650S, WR6600H, WR7800H, WM3400RN, WM3450RN, WM3500R, WM3600R, WM3800R, WR8166N, MR01LN MR02LN, WG1810HP(JE) and WG1810HP(MF) all versions allows a attacker to get device informations via the internet.

Products Affected

Vendor Product Version
nec aterm_wg1200hs3_firmware -
nec aterm_mr02ln_firmware -
nec aterm_wr6600h_firmware -
nec aterm_wr7800h_firmware -
nec aterm_w1200ex-ms_firmware -
nec aterm_wg1200hs2_firmware -
nec aterm_wg1200hs_firmware -
nec aterm_wg1200hp_firmware -
nec aterm_wr8170n_firmware -
nec aterm_wm3600r_firmware -
nec aterm_wr4100n_firmware -
nec aterm_wr8150n_firmware -
nec aterm_wg1400hp_firmware -
nec aterm_wr4500n_firmware -
nec aterm_wg1800hp3_firmware -
nec aterm_wr8750n_firmware -
nec aterm_wm3800r_firmware -
nec aterm_wg1900hp2_firmware -
nec aterm_wg1200hp2_firmware -
nec aterm_wr7850s_firmware -
nec aterm_wr8700n_firmware -
nec aterm_wg1800hp4_firmware -
nec aterm_wm3500r_firmware -
nec aterm_wg600hp_firmware -
nec aterm_wr8400n_firmware -
nec aterm_wf300hp_firmware -
nec aterm_wr8160n_firmware -
nec aterm_wr8300n_firmware -
nec aterm_wg1810hp(mf)_firmware -
nec aterm_mr01ln_firmware -
nec aterm_wf1200hp_firmware -
nec aterm_wr6670s_firmware -
nec aterm_wm3450rn_firmware -
nec aterm_wr6650s_firmware -
nec aterm_wr9300n_firmware -
nec aterm_w300p_firmware -
nec aterm_wg2200hp_firmware -
nec aterm_wr1200h_firmware -
nec aterm_wg1800hp_firmware -
nec aterm_wf1200hp2_firmware -
nec aterm_cr2500p_firmware -
nec aterm_wf300hp2_firmware -
nec aterm_wg1810hp(je)_firmware -
nec aterm_wg1200hp3_firmware -
nec aterm_wr8100n_firmware -
nec aterm_wr8165n_firmware -
nec aterm_wr7870s_firmware -
nec aterm_wr8370n_firmware -
nec aterm_wr8200n_firmware -
nec aterm_wf800hp_firmware -
nec aterm_wg300hp_firmware -
nec aterm_wg1800hp2_firmware -
nec aterm_wr9500n_firmware -
nec aterm_wm3400rn_firmware -
nec aterm_wr8600n_firmware -
nec aterm_wr8175n_firmware -
nec aterm_wg1900hp_firmware -
nec aterm_wr8500n_firmware -
nec aterm_wr8166n_firmware -