2 matches found
CVE-2018-0630
The CVE-2018-0630 issue affects NEC Aterm W300P routers (firmware Ver1.0.13 and earlier). A command-injection flaw exists in the sysCmd parameter that allows an authenticated administrator to execute arbitrary OS commands on the device. Impact is elevated due to administrative access required; ex...
JVN#26629618: Multiple vulnerabilities in Aterm W300P
Aterm W300P provided by NEC Corporation contains multiple vulnerabilities listed below. OS Command Injection CWE-78 - CVE-2018-0629, CVE-2018-0630, CVE-2018-0631 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H| Base Score: 6.8 CVSS v2|...