PT-2023-24298 · Nec · Aterm W300P+31
Published
2023-06-28
·
Updated
2023-07-05
·
CVE-2023-3333
CVSS v3.1
7.2
High
| Vector | AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H |
🚨 CVE-2023-3333
Improper Neutralization of Special Elements used in an OS Command vulnerability in NEC Corporation Aterm WG2600HP2, WG2600HP, WG2200HP, WG1800HP2, WG1800HP, WG1400HP, WG600HP, WG300HP, WF300HP, WR9500N, WR9300N, WR8750N, WR8700N, WR8600N, WR8370N, WR8175N and WR8170N all versions allows a attacker to execute an arbitrary OS command with the root privilege, after obtaining a high privilege exploiting CVE-2023-3330 and CVE-2023-3331 vulnerabilities.
🎖@cveNotify
Fix
OS Command Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Aterm W300P
Aterm Wg1400Hp
Aterm Wg1800Hp
Aterm Wg1800Hp2
Aterm Wg2200Hp
Aterm Wg2600Hs
Aterm Wg2600Hp2
Aterm Wg600Hp
Aterm Wr8170N
Aterm Wr8175N
Aterm Wr8370N
Aterm Wr8600N
Aterm Wr8700N
Aterm Wr8750N
Aterm Wr9300N
Aterm Wr9500N
Aterm Wf300Hp Firmware
Aterm Wg1400Hp Firmware
Aterm Wg1800Hp2 Firmware
Aterm Wg1800Hp Firmware
Aterm Wg2200Hp Firmware
Aterm Wg2600Hp2 Firmware
Aterm Wg2600Hp Firmware
Aterm Wg600Hp Firmware
Aterm Wr8170N Firmware
Aterm Wr8175N Firmware
Aterm Wr8370N Firmware
Aterm Wr8600N Firmware
Aterm Wr8700N Firmware
Aterm Wr8750N Firmware
Aterm Wr9300N Firmware
Aterm Wr9500N Firmware