Lucene search
K

16 matches found

Japan Vulnerability Notes
Japan Vulnerability Notes
added 2026/05/25 6:35 a.m.15 views

NEC Aterm series vulnerable to OS command injection (NV26-003)

Overview NEC Aterm series products provided by NEC Corporation contain the following vulnerability. OS command injection CWE-78 - CVE-2026-8652 So Kato of Mitsui Bussan Secure Directions, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security...

8.5CVSS5.8AI score0.00722EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/03/28 4:59 p.m.5 views

CVE-2026-4621

Hidden Functionality vulnerability in NEC Platforms, Ltd. Aterm Series allows a attacker to enable telnet via network...

6.3CVSS5.9AI score0.00157EPSS
Exploits0References1
NVD
NVD
added 2026/03/27 12:16 p.m.8 views

CVE-2026-4309

Missing Authorization vulnerability in NEC Platforms, Ltd. Aterm Series allows a attacker to get a specific device information and change the settings via network...

6.5CVSS0.00142EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/27 11:53 a.m.26 views

CVE-2026-4620

OS Command Injection vulnerability in NEC Platforms, Ltd. Aterm Series allows a attacker to execute arbitrary OS commands via network...

7.1CVSS0.00996EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/27 11:53 a.m.1 views

CVE-2026-4620

OS Command Injection vulnerability in NEC Platforms, Ltd. Aterm Series allows a attacker to execute arbitrary OS commands via network...

7.1CVSS6.1AI score0.00996EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/03/27 11:52 a.m.2 views

CVE-2026-4621

Hidden Functionality vulnerability in NEC Platforms, Ltd. Aterm Series allows a attacker to enable telnet via network...

6.3CVSS5.9AI score0.00157EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/03/27 11:52 a.m.39 views

CVE-2026-4621

Hidden Functionality vulnerability in NEC Platforms, Ltd. Aterm Series allows a attacker to enable telnet via network...

6.3CVSS0.00157EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/27 11:46 a.m.1 views

CVE-2026-4619

Path Traversal vulnerability in NEC Platforms, Ltd. Aterm Series allows a attacker to wtite over any file via network...

6CVSS5.9AI score0.00314EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/03/27 11:46 a.m.31 views

CVE-2026-4309

Missing Authorization vulnerability in NEC Platforms, Ltd. Aterm Series allows a attacker to get a specific device information and change the settings via network...

6.3CVSS0.00142EPSS
Exploits0References1
CVE
CVE
added 2026/03/27 11:46 a.m.14 views

CVE-2026-4309

CVE-2026-4309 concerns NEC Platforms, Ltd. Aterm Series devices with a Missing Authorization vulnerability. The available documents state that an attacker can retrieve specific device information and alter settings over the network. The CVSS metrics indicate a Network attack vector, high attack c...

6.5CVSS5.9AI score0.00142EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2026/03/27 12:0 a.m.8 views

NEC Platforms Aterm Series 安全漏洞

The NEC Platforms Aterm Series is a series of wireless router and network device products developed by the Japanese company NEC. The NEC Platforms Aterm Series contains security vulnerabilities, which stem from OS command injection, potentially allowing for the execution of arbitrary OS commands...

9.8CVSS6AI score0.00996EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/27 12:0 a.m.7 views

PT-2026-28646

Name of the Vulnerable Software and Affected Versions NEC Platforms, Ltd. Aterm Series affected versions not specified Description An OS Command Injection issue exists in NEC Platforms, Ltd. Aterm Series. This allows a malicious actor to execute arbitrary OS commands through the network...

7.1CVSS6.1AI score0.00996EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/03/27 12:0 a.m.10 views

PT-2026-28648

Name of the Vulnerable Software and Affected Versions NEC Platforms, Ltd. Aterm Series affected versions not specified Description An OS Command Injection issue exists in NEC Platforms, Ltd. Aterm Series. This allows a malicious actor to execute arbitrary OS commands through the network...

7.1CVSS6.1AI score0.00864EPSS
Exploits0References4
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2025/02/14 6:48 a.m.6 views

Multiple vulnerabilities in NEC Aterm series (NV25-003)

Overview Aterm series provided by NEC Corporation contains multiple vulnerabilities listed below. Stored Cross-site Scripting CWE-79 - CVE-2025-0354 Missing Authentication for Critical Function CWE-306 - CVE-2025-0355 OOS Command Injection CWE-78 - CVE-2025-0356 CVE-2025-0354, CVE-2025-0355...

7.5CVSS6.9AI score0.006EPSS
Exploits0References8
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2024/04/05 5:53 a.m.4 views

Multiple vulnerabilities in NEC Aterm series

Overview Aterm series provided by NEC Corporation contains multiple vulnerabilities listed below. Incorrect Permission Assignment for Critical Resource CWE-732 - CVE-2024-28005 Exposure of Sensitive System Information to an Unauthorized Control Sphere CWE-497 - CVE-2024-28006 Incorrect Permission...

9.8CVSS8AI score0.00743EPSS
Exploits0References20
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2024/04/05 12:0 a.m.60 views

JVN#82074338: Multiple vulnerabilities in NEC Aterm series

Aterm series provided by NEC Corporation contains multiple vulnerabilities listed below. Incorrect Permission Assignment for Critical Resource CWE-732 CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Base Score 8.0 CVE-2024-28005 Exposure of Sensitive System Information to an Unauthorized Control...

9.8CVSS10AI score0.00743EPSS
Exploits0
Rows per page
Query Builder