PT-2023-24291 · Nec · Aterm W300P+31
Published
2023-06-28
·
Updated
2023-07-05
·
CVE-2023-3332
CVSS v3.1
4.8
Medium
| Vector | AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N |
Improper Neutralization of Input During Web Page Generation vulnerability in NEC Corporation Aterm Aterm WG2600HP2, WG2600HP, WG2200HP, WG1800HP2, WG1800HP, WG1400HP, WG600HP, WG300HP, WF300HP, WR9500N, WR9300N, WR8750N, WR8700N, WR8600N, WR8370N, WR8175N and WR8170N all versions allows a attacker to
execute an arbitrary script, after obtaining a high privilege exploiting CVE-2023-3330 and CVE-2023-3331 vulnerabilities.
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Aterm W300P
Aterm Wg1400Hp
Aterm Wg1800Hp
Aterm Wg1800Hp2
Aterm Wg2200Hp
Aterm Wg2600Hs
Aterm Wg2600Hp2
Aterm Wg600Hp
Aterm Wr8170N
Aterm Wr8175N
Aterm Wr8370N
Aterm Wr8600N
Aterm Wr8700N
Aterm Wr8750N
Aterm Wr9300N
Aterm Wr9500N
Aterm Wf300Hp Firmware
Aterm Wg1400Hp Firmware
Aterm Wg1800Hp2 Firmware
Aterm Wg1800Hp Firmware
Aterm Wg2200Hp Firmware
Aterm Wg2600Hp2 Firmware
Aterm Wg2600Hp Firmware
Aterm Wg600Hp Firmware
Aterm Wr8170N Firmware
Aterm Wr8175N Firmware
Aterm Wr8370N Firmware
Aterm Wr8600N Firmware
Aterm Wr8700N Firmware
Aterm Wr8750N Firmware
Aterm Wr9300N Firmware
Aterm Wr9500N Firmware