Lucene search
K

4 matches found

CVE
CVE
added 2020/12/14 2:25 a.m.63 views

CVE-2020-5635

CVE-2020-5635 affects NEC Aterm SA3500G firmware prior to ver. 3.5.9. The vulnerability allows an attacker on an adjacent network to send a crafted request to a specific URL, potentially executing arbitrary commands on the device. The identified root cause is OS command injection via the exposed ...

8.8CVSS8.7AI score0.01021EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2020/12/14 2:25 a.m.27 views

CVE-2020-5635

Aterm SA3500G firmware versions prior to Ver. 3.5.9 allows an attacker on the adjacent network to send a specially crafted request to a specific URL, which may result in an arbitrary command execution...

8.8AI score0.01021EPSS
Exploits0References3
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2020/12/11 7:59 a.m.4 views

Multiple vulnerabilities in Aterm SA3500G

Overview Aterm SA3500G provided by NEC Corporation contains multiple vulnerabilities listed below. OS command injection CWE-78 - CVE-2020-5635 OS command injection CWE-78 - CVE-2020-5636 Improper Validation of Integrity Check Value CWE-354 - CVE-2020-5637 These vulnerabilities were reported by th...

8.8CVSS7.6AI score0.01021EPSS
Exploits0References10
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2020/12/11 12:0 a.m.52 views

JVN#55917325: Multiple vulnerabilities in Aterm SA3500G

Aterm SA3500G provided by NEC Corporation contains multiple vulnerabilities listed below. OS command injection CWE-78 - CVE-2020-5635 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H| Base Score: 8.8 CVSS v2| AV:A/AC:L/Au:N/C:P/I:P/A:P| Base Score: 5.8 OS...

8.8CVSS7.7AI score0.01021EPSS
Exploits0
Rows per page
Query Builder