Design/Logic Flaw

2019-01-0923:29:00

PRIOn knowledge base

www.prio-n.com

7.2 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

46.2%

JSON

Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS commands via FactoryPassword parameter of a certain URL, different URL from CVE-2018-0634.

CPENameOperatorVersion
aterm_hc100rc_firmwarele1.0.1

CPE	Name	Operator	Version
	aterm_hc100rc_firmware	le	1.0.1

References

jpn.nec.com/security-info/secinfo/nv18-011.html

jvn.jp/en/jp/JVN84825660/index.html