Details of VAR-202104-0484

ID

VAR-202104-0484

CVE

CVE-2021-20710

TITLE

Aterm WF1200CR , Aterm WG1200CR , Aterm WG2600HS and Aterm WX3000HP Multiple vulnerabilities in

Trust: 0.8

sources: JVNDB: JVNDB-2021-000030

DESCRIPTION

Cross-site scripting vulnerability in Aterm WG2600HS firmware Ver1.5.1 and earlier allows remote attackers to inject an arbitrary script via unspecified vectors. Provided by NEC Corporation Aterm WF1200CR , Aterm WG1200CR , Aterm WG2600HS and Aterm WX3000HP There are multiple vulnerabilities in. Aterm WF1200CR , Aterm WG1200CR and Aterm WG2600HS ・ OS Command injection (CWE-78) - CVE-2021-20708 ・ Insufficient integrity verification of downloaded file (CWE-354) - CVE-2021-20709Aterm WG2600HS ・ Cross-site scripting (CWE-79) - CVE-2021-20710 ・ OS Command injection (CWE-78) - CVE-2021-20711Aterm WG2600HS and WX3000HP ・ Inadequate access restrictions (CWE-284) - CVE-2021-20712CVE-2021-20708 , CVE-2021-20709 This vulnerability information is provided by the following persons based on Information Security Early Warning Partnership: IPA Report to JPCERT/CC Coordinated with the developers. Reporter : Mitsui Bussan Secure Direction Co., Ltd. Tsukamoto Taizo Mr CVE-2021-20710 , CVE-2021-20711 This vulnerability information is provided by the following persons based on Information Security Early Warning Partnership: IPA Report to JPCERT/CC Coordinated with the developers. Reporter : Cyber Defense Institute, Inc. Nagaoka Satoru Mr CVE-2021-20712 This vulnerability information is provided by the following persons based on Information Security Early Warning Partnership: IPA Report to JPCERT/CC Coordinated with the developers. Reporter : Kato Yoshimitsu MrThe expected impact depends on each vulnerability, but it may be affected as follows. -While logged in to the management page of the product, a specific URL Any command can be executed by sending a specially crafted request to - CVE-2021-20708 -Any command can be executed by loading a specially crafted configuration file while logged in to the management page of the product. - CVE-2021-20709 -Any script is executed on the web browser of the user who accessed the product. - CVE-2021-20710 -Any command is executed by an attacker who accesses the management page of the product. - CVE-2021-20711 ・ IPv6 There is a problem with the firewall function, LAN The device connected to the side WAN Accessed from an external network such as - CVE-2021-20712

Trust: 1.71

sources: NVD: CVE-2021-20710 // JVNDB: JVNDB-2021-000030 // VULMON: CVE-2021-20710

AFFECTED PRODUCTS

vendor:	aterm	model:	wg2600hs	scope:	lte	version:	1.5.1	Trust: 1.0
vendor:	日本電気	model:	aterm wf1200cr	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wg1200cr	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wg2600hs	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wx3000hp	scope:	-	version:	-	Trust: 0.8

sources: JVNDB: JVNDB-2021-000030 // NVD: CVE-2021-20710

CVSS

SEVERITY

CVSSV2

CVSSV3

NVD:	CVE-2021-20710
value:	MEDIUM
Trust: 1.0
IPA:	JVNDB-2021-000030
value:	MEDIUM
Trust: 0.8
CNNVD:	CNNVD-202104-629
value:	MEDIUM
Trust: 0.6
VULMON:	CVE-2021-20710
value:	MEDIUM
Trust: 0.1

NVD:
severity:	MEDIUM
baseScore:	4.3
vectorString:	AV:N/AC:M/AU:N/C:N/I:P/A:N
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	8.6
impactScore:	2.9
acInsufInfo:	FALSE
obtainAllPrivilege:	FALSE
obtainUserPrivilege:	FALSE
obtainOtherPrivilege:	FALSE
userInteractionRequired:	TRUE
version:	2.0
Trust: 1.0
IPA:	JVNDB-2021-000030
severity:	LOW
baseScore:	2.6
vectorString:	AV:N/AC:H/AU:N/C:N/I:P/A:N
accessVector:	NETWORK
accessComplexity:	HIGH
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	NONE
impactScore:	NONE
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.8
VULMON:	CVE-2021-20710
severity:	MEDIUM
baseScore:	4.3
vectorString:	AV:N/AC:M/AU:N/C:N/I:P/A:N
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	8.6
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

NVD:
baseSeverity:	MEDIUM
baseScore:	6.1
vectorString:	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	REQUIRED
scope:	CHANGED
confidentialityImpact:	LOW
integrityImpact:	LOW
availabilityImpact:	NONE
exploitabilityScore:	2.8
impactScore:	2.7
version:	3.1
Trust: 1.0
IPA:	JVNDB-2021-000030
baseSeverity:	MEDIUM
baseScore:	6.1
vectorString:	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	REQUIRED
scope:	CHANGED
confidentialityImpact:	LOW
integrityImpact:	LOW
availabilityImpact:	NONE
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: VULMON: CVE-2021-20710 // JVNDB: JVNDB-2021-000030 // NVD: CVE-2021-20710 // CNNVD: CNNVD-202104-629

PROBLEMTYPE DATA

problemtype:	CWE-79	Trust: 1.0
problemtype:	OS Command injection (CWE-78) [IPA Evaluation ]	Trust: 0.8
problemtype:	Cross-site scripting (CWE-79) [IPA Evaluation ]	Trust: 0.8
problemtype:	Incorrect input confirmation (CWE-20) [IPA Evaluation ]	Trust: 0.8
problemtype:	Inappropriate access control (CWE-284) [IPA Evaluation ]	Trust: 0.8

sources: JVNDB: JVNDB-2021-000030 // NVD: CVE-2021-20710

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-202104-629

TYPE

XSS

Trust: 0.6

sources: CNNVD: CNNVD-202104-629

CONFIGURATIONS

sources: NVD: CVE-2021-20710

PATCH

title:	WF1200CR ・ WG1200CR ・ WG2600HS ・ WX3000HP About security improvement in NEC Product security information	url:	https://www.aterm.jp/support/tech/2021/0324.html	Trust: 0.8
title:	NEC Aterm Fixes for cross-site scripting vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=147085	Trust: 0.6

sources: JVNDB: JVNDB-2021-000030 // CNNVD: CNNVD-202104-629

EXTERNAL IDS

db:	JVN	id:	JVN29739718	Trust: 2.5
db:	NVD	id:	CVE-2021-20710	Trust: 2.5
db:	JVNDB	id:	JVNDB-2021-000030	Trust: 1.4
db:	CNNVD	id:	CNNVD-202104-629	Trust: 0.6
db:	VULMON	id:	CVE-2021-20710	Trust: 0.1

sources: VULMON: CVE-2021-20710 // JVNDB: JVNDB-2021-000030 // NVD: CVE-2021-20710 // CNNVD: CNNVD-202104-629

REFERENCES

url:	https://jvn.jp/en/jp/jvn29739718/index.html	Trust: 1.7
url:	https://jpn.nec.com/security-info/secinfo/nv21-010.html	Trust: 1.7
url:	https://jvn.jp/jp/jvn29739718/index.html	Trust: 0.8
url:	https://jvndb.jvn.jp/en/contents/2021/jvndb-2021-000030.html	Trust: 0.6
url:	https://nvd.nist.gov/vuln/detail/cve-2021-20710	Trust: 0.6
url:	https://cwe.mitre.org/data/definitions/79.html	Trust: 0.1
url:	https://nvd.nist.gov	Trust: 0.1

sources: VULMON: CVE-2021-20710 // JVNDB: JVNDB-2021-000030 // NVD: CVE-2021-20710 // CNNVD: CNNVD-202104-629

SOURCES

db:	VULMON	id:	CVE-2021-20710
db:	JVNDB	id:	JVNDB-2021-000030
db:	NVD	id:	CVE-2021-20710
db:	CNNVD	id:	CNNVD-202104-629

LAST UPDATE DATE

2023-12-18T13:17:53.060000+00:00

SOURCES UPDATE DATE

db:	VULMON	id:	CVE-2021-20710	date:	2021-04-28T00:00:00
db:	JVNDB	id:	JVNDB-2021-000030	date:	2021-04-09T05:21:00
db:	NVD	id:	CVE-2021-20710	date:	2021-04-28T14:34:11.613
db:	CNNVD	id:	CNNVD-202104-629	date:	2021-04-29T00:00:00

SOURCES RELEASE DATE

db:	VULMON	id:	CVE-2021-20710	date:	2021-04-26T00:00:00
db:	JVNDB	id:	JVNDB-2021-000030	date:	2021-04-09T00:00:00
db:	NVD	id:	CVE-2021-20710	date:	2021-04-26T01:15:08.003
db:	CNNVD	id:	CNNVD-202104-629	date:	2021-04-09T00:00:00