CVE-2024-28014

CVE-2024-28014

CVSS 9.8 CRITICALEPSS 0.7%CWE-121

Stack-based Buffer Overflow vulnerability in NEC Corporation Aterm WG1800HP4, WG1200HS3, WG1900HP2, WG1200HP3, WG1800HP3, WG1200HS2, WG1900HP, WG1200HP2, W1200EX(-MS), WG1200HS, WG1200HP, WF300HP2, W300P, WF800HP, WR8165N, WG2200HP, WF1200HP2, WG1800HP2, WF1200HP, WG600HP, WG300HP, WF300HP, WG1800HP, WG1400HP, WR8175N, WR9300N, WR8750N, WR8160N, WR9500N, WR8600N, WR8370N, WR8170N, WR8700N, WR8300N, WR8150N, WR4100N, WR4500N, WR8100N, WR8500N, CR2500P, WR8400N, WR8200N, WR1200H, WR7870S, WR6670S, WR7850S, WR6650S, WR6600H, WR7800H, WM3400RN, WM3450RN, WM3500R, WM3600R, WM3800R, WR8166N, MR01LN MR02LN, WG1810HP(JE) and WG1810HP(MF) all versions allows a attacker to execute an arbitrary command via the internet.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Produtos afetados

NEC Corporation · CR2500P NEC Corporation · MR01LN NEC Corporation · MR02LN NEC Corporation · W1200EX(-MS)NEC Corporation · W300P NEC Corporation · WF1200HP NEC Corporation · WF1200HP2 NEC Corporation · WF300HP NEC Corporation · WF300HP2 NEC Corporation · WF800HP NEC Corporation · WG1200HP NEC Corporation · WG1200HP2 NEC Corporation · WG1200HP3 NEC Corporation · WG1200HS NEC Corporation · WG1200HS2 NEC Corporation · WG1200HS3 NEC Corporation · WG1400HP NEC Corporation · WG1800HP NEC Corporation · WG1800HP2 NEC Corporation · WG1800HP3 NEC Corporation · WG1800HP4 NEC Corporation · WG1810HP(JE)NEC Corporation · WG1810HP(MF)NEC Corporation · WG1900HP NEC Corporation · WG1900HP2 NEC Corporation · WG2200HP NEC Corporation · WG300HP NEC Corporation · WG600HP NEC Corporation · WM3400RN NEC Corporation · WM3450RN NEC Corporation · WM3500R NEC Corporation · WM3600R NEC Corporation · WM3800R NEC Corporation · WR1200H NEC Corporation · WR4100N NEC Corporation · WR4500N NEC Corporation · WR6600H NEC Corporation · WR6650S NEC Corporation · WR6670S NEC Corporation · WR7800H NEC Corporation · WR7850S NEC Corporation · WR7870S NEC Corporation · WR8100N NEC Corporation · WR8150N NEC Corporation · WR8160N NEC Corporation · WR8165N NEC Corporation · WR8166N NEC Corporation · WR8170N NEC Corporation · WR8175N NEC Corporation · WR8200N NEC Corporation · WR8300N NEC Corporation · WR8370N NEC Corporation · WR8400N NEC Corporation · WR8500N NEC Corporation · WR8600N NEC Corporation · WR8700N NEC Corporation · WR8750N NEC Corporation · WR9300N NEC Corporation · WR9500N

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://https://jpn.nec.com/security-info/secinfo/nv24-001_en.html https://jpn.nec.com/security-info/secinfo/nv24-001_en.html