Details of VAR-202404-0056

ID

VAR-202404-0056

CVE

CVE-2024-280011

TITLE

NEC Aterm Multiple vulnerabilities in series

Trust: 0.8

sources: JVNDB: JVNDB-2024-000037

DESCRIPTION

None

Trust: 0.8

sources: JVNDB: JVNDB-2024-000037

AFFECTED PRODUCTS

vendor:	日本電気	model:	aterm wg1810hp	scope:	-	version:	-	Trust: 1.6
vendor:	日本電気	model:	aterm wm3600r	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wr6600h	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wf300hp2	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wg1200hp3	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm cr2500p	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wr1200h	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wr8170n	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wr4500n	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wf1200hp2	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm mr01ln	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wr4100n	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wg1400hp	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm w300p	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wr7800h	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wg300hp	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wf800hp	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wr8400n	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wr8175n	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm mr02ln	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wr8370n	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wg1200hs2	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wr8100n	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wg1200hs	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wm3800r	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wg1800hp3	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wm3500r	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wr8200n	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wr6670s	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wf1200hp	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wr7850s	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wr8600n	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wr8500n	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wr8700n	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wg1200hs3	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wg600hp	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wg1800hp	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wr7870s	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wg1800hp4	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wg1900hp	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wg2200hp	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wg1200hp2	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wr8150n	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wr8750n	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wr6650s	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wg1800hp2	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wr8166n	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wg1900hp2	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wr9500n	scope:	eq	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wm3400rn	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wr8165n	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wr8300n	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wr8160n	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wr9300n	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm w1200ex	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wg1200hp	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wm3450rn	scope:	-	version:	-	Trust: 0.8
vendor:	日本電気	model:	aterm wf300hp	scope:	-	version:	-	Trust: 0.8

sources: JVNDB: JVNDB-2024-000037

CVSS

SEVERITY

CVSSV2

CVSSV3

IPA:	JVNDB-2024-000037
value:	MEDIUM
Trust: 0.8

IPA:	JVNDB-2024-000037
baseSeverity:	MEDIUM
baseScore:	4.3
vectorString:	CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
attackVector:	ADJACENT NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	LOW
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: JVNDB: JVNDB-2024-000037

PROBLEMTYPE DATA

problemtype:	OS Command injection (CWE-78) [IPA evaluation ]	Trust: 0.8
problemtype:	Buffer error (CWE-119) [IPA evaluation ]	Trust: 0.8
problemtype:	information leak (CWE-200) [IPA evaluation ]	Trust: 0.8
problemtype:	Inappropriate authentication (CWE-287) [IPA evaluation ]	Trust: 0.8
problemtype:	others (CWE-Other) [IPA evaluation ]	Trust: 0.8

sources: JVNDB: JVNDB-2024-000037

PATCH

title:

Information from NEC Corporation NEC Product security information

url:

https://jvn.jp/jp/jvn82074338/6443/index.html

Trust: 0.8

sources: JVNDB: JVNDB-2024-000037

EXTERNAL IDS

db:	JVN	id:	JVN82074338	Trust: 0.8
db:	NVD	id:	CVE-2024-280011	Trust: 0.8
db:	JVNDB	id:	JVNDB-2024-000037	Trust: 0.8

sources: JVNDB: JVNDB-2024-000037

REFERENCES

url:

https://jvn.jp/jp/jvn82074338/index.html

Trust: 0.8

sources: JVNDB: JVNDB-2024-000037

SOURCES

db:

JVNDB

id:

JVNDB-2024-000037

LAST UPDATE DATE

2024-04-18T05:34:30.562000+00:00

SOURCES UPDATE DATE

db:

JVNDB

id:

JVNDB-2024-000037

date:

2024-04-05T03:20:00

SOURCES RELEASE DATE

db:

JVNDB

id:

JVNDB-2024-000037

date:

2024-04-05T00:00:00