34 matches found
EUVD-2018-8047
Malware in sbrugna...
EUVD-2018-8046
Malware in sbrugna...
EUVD-2018-8045
Malware in sbrugna...
Input validation
Improper validation of integrity check value vulnerability in NEC Aterm WF1200CR firmware Ver1.3.2 and earlier, Aterm WG1200CR firmware Ver1.3.3 and earlier, and Aterm WG2600HS firmware Ver1.5.1 and earlier allows an attacker with an administrative privilege to execute arbitrary OS commands by...
CVE-2021-20709
Improper validation of integrity check value vulnerability in NEC Aterm WF1200CR firmware Ver1.3.2 and earlier, Aterm WG1200CR firmware Ver1.3.3 and earlier, and Aterm WG2600HS firmware Ver1.5.1 and earlier allows an attacker with an administrative privilege to execute arbitrary OS commands by...
CVE-2021-20709
CVE-2021-20709 describes an improper validation of the integrity check value in NEC Aterm WF1200CR (firmware ≤1.3.2), Aterm WG1200CR (≤1.3.3), and Aterm WG2600HS (≤1.5.1). The flaw allows an authenticated/administrative attacker to execute arbitrary OS commands by sending a specially crafted requ...
Multiple vulnerabilities in Aterm WF1200CR, Aterm WG1200CR, Aterm WG2600HS, and Aterm WX3000HP
Overview Aterm WF1200CR, Aterm WG1200CR, Aterm WG2600HS, and Aterm WX3000HP provided by NEC Corporation contain multiple vulnerabilities listed below. Aterm WF1200CR, Aterm WG1200CR, and Aterm WG2600HS OS Command Injection CWE-78 - CVE-2021-20708 Improper Validation of Integrity Check Value CWE-3...
NEC Aterm WF1200C 操作系统命令注入漏洞
The NEC Aterm WF1200C is a wireless router from Nippon Electric NEC. A security vulnerability exists in Aterm WF1200CR: version 1.3.2, version 1.3.3, and version 1.5.1, which allows remote users to execute arbitrary shell commands on the target system...
NEC Aterm WG2600HS 跨站脚本漏洞
The NEC Aterm WG2600HS is a wireless router from Japan Electric NEC. A cross-site scripting vulnerability exists in the Aterm WF1200CR version 1.5.1, which allows remote attackers to perform cross-site scripting XSS attacks...
CVE-2018-16192
Aterm WF1200CR and Aterm WG1200CR Aterm WF1200CR firmware Ver1.1.1 and earlier, Aterm WG1200CR firmware Ver1.0.1 and earlier allow an attacker on the same network segment to obtain information registered on the device via unspecified vectors...
CVE-2018-16193
Cross-site scripting vulnerability in Aterm WF1200CR and Aterm WG1200CR Aterm WF1200CR firmware Ver1.1.1 and earlier, Aterm WG1200CR firmware Ver1.0.1 and earlier allows authenticated attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2018-16193
Cross-site scripting vulnerability in Aterm WF1200CR and Aterm WG1200CR Aterm WF1200CR firmware Ver1.1.1 and earlier, Aterm WG1200CR firmware Ver1.0.1 and earlier allows authenticated attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2018-16194
Aterm WF1200CR and Aterm WG1200CR Aterm WF1200CR firmware Ver1.1.1 and earlier, Aterm WG1200CR firmware Ver1.0.1 and earlier allows authenticated attackers to execute arbitrary OS commands via unspecified vectors...
CVE-2018-16192
Aterm WF1200CR and Aterm WG1200CR Aterm WF1200CR firmware Ver1.1.1 and earlier, Aterm WG1200CR firmware Ver1.0.1 and earlier allow an attacker on the same network segment to obtain information registered on the device via unspecified vectors...
CVE-2018-16194
Aterm WF1200CR and Aterm WG1200CR Aterm WF1200CR firmware Ver1.1.1 and earlier, Aterm WG1200CR firmware Ver1.0.1 and earlier allows authenticated attackers to execute arbitrary OS commands via unspecified vectors...
CVE-2018-16195
Aterm WF1200CR and Aterm WG1200CR Aterm WF1200CR firmware Ver1.1.1 and earlier, Aterm WG1200CR firmware Ver1.0.1 and earlier allows an attacker on the same network segment to execute arbitrary OS commands via SOAP interface of UPnP...
CVE-2018-16195
Aterm WF1200CR and Aterm WG1200CR Aterm WF1200CR firmware Ver1.1.1 and earlier, Aterm WG1200CR firmware Ver1.0.1 and earlier allows an attacker on the same network segment to execute arbitrary OS commands via SOAP interface of UPnP...
Design/Logic Flaw
Aterm WF1200CR and Aterm WG1200CR Aterm WF1200CR firmware Ver1.1.1 and earlier, Aterm WG1200CR firmware Ver1.0.1 and earlier allows authenticated attackers to execute arbitrary OS commands via unspecified vectors...
Cross site scripting
Cross-site scripting vulnerability in Aterm WF1200CR and Aterm WG1200CR Aterm WF1200CR firmware Ver1.1.1 and earlier, Aterm WG1200CR firmware Ver1.0.1 and earlier allows authenticated attackers to inject arbitrary web script or HTML via unspecified vectors...
Design/Logic Flaw
Aterm WF1200CR and Aterm WG1200CR Aterm WF1200CR firmware Ver1.1.1 and earlier, Aterm WG1200CR firmware Ver1.0.1 and earlier allow an attacker on the same network segment to obtain information registered on the device via unspecified vectors...