Nec CVEs and Security Vulnerabilities

Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (120 CVEs found)

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2018-11741	1 Nec	2 Univerge Sv9100 Webpro, Univerge Sv9100 Webpro Firmware	2024-11-21	9.8 Critical
NEC Univerge Sv9100 WebPro 6.00.00 devices have Predictable Session IDs that result in Account Information Disclosure via Home.htm?sessionId=#####&GOTO(8) URIs.
CVE-2018-0641	1 Nec	2 Aterm Hc100rc, Aterm Hc100rc Firmware	2024-11-21	N/A
Buffer overflow in Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary code via tools_system.cgi date parameter, time parameter, and offset parameter.
CVE-2018-0640	1 Nec	2 Aterm Hc100rc, Aterm Hc100rc Firmware	2024-11-21	N/A
Buffer overflow in Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary code via netWizard.cgi date parameter, time parameter, and offset parameter.
CVE-2018-0639	1 Nec	2 Aterm Hc100rc, Aterm Hc100rc Firmware	2024-11-21	N/A
Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS commands via tools_firmware.cgi date parameter, time parameter, and offset parameter.
CVE-2018-0638	1 Nec	2 Aterm Hc100rc, Aterm Hc100rc Firmware	2024-11-21	N/A
Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS commands via import.cgi encKey parameter.
CVE-2018-0637	1 Nec	2 Aterm Hc100rc, Aterm Hc100rc Firmware	2024-11-21	N/A
Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS commands via export.cgi encKey parameter.
CVE-2018-0636	1 Nec	2 Aterm Hc100rc, Aterm Hc100rc Firmware	2024-11-21	N/A
Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS commands via FactoryPassword parameter of a certain URL, different URL from CVE-2018-0634.
CVE-2018-0635	1 Nec	2 Aterm Hc100rc, Aterm Hc100rc Firmware	2024-11-21	N/A
Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS commands via filename parameter.
CVE-2018-0634	1 Nec	2 Aterm Hc100rc, Aterm Hc100rc Firmware	2024-11-21	N/A
Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS commands via FactoryPassword parameter or bootmode parameter of a certain URL.
CVE-2018-0633	1 Nec	2 Aterm W300p, Aterm W300p Firmware	2024-11-21	N/A
Buffer overflow in Aterm W300P Ver1.0.13 and earlier allows attacker with administrator rights to execute arbitrary code via submit-url parameter.
CVE-2018-0632	1 Nec	2 Aterm W300p, Aterm W300p Firmware	2024-11-21	N/A
Buffer overflow in Aterm W300P Ver1.0.13 and earlier allows attacker with administrator rights to execute arbitrary code via HTTP request and response.
CVE-2018-0631	1 Nec	2 Aterm W300p, Aterm W300p Firmware	2024-11-21	N/A
Aterm W300P Ver1.0.13 and earlier allows attacker with administrator rights to execute arbitrary OS commands via targetAPSsid parameter.
CVE-2018-0630	1 Nec	2 Aterm W300p, Aterm W300p Firmware	2024-11-21	N/A
Aterm W300P Ver1.0.13 and earlier allows attacker with administrator rights to execute arbitrary OS commands via sysCmd parameter.
CVE-2018-0629	1 Nec	2 Aterm W300p, Aterm W300p Firmware	2024-11-21	N/A
Aterm W300P Ver1.0.13 and earlier allows attacker with administrator rights to execute arbitrary OS commands via HTTP request and response.
CVE-2018-0628	1 Nec	2 Aterm Wg1200hp, Aterm Wg1200hp Firmware	2024-11-21	N/A
Aterm WG1200HP firmware Ver1.0.31 and earlier allows attacker with administrator rights to execute arbitrary OS commands via HTTP request and response.
CVE-2018-0627	1 Nec	2 Aterm Wg1200hp, Aterm Wg1200hp Firmware	2024-11-21	N/A
Aterm WG1200HP firmware Ver1.0.31 and earlier allows attacker with administrator rights to execute arbitrary OS commands via targetAPSsid parameter.
CVE-2018-0626	1 Nec	2 Aterm Wg1200hp, Aterm Wg1200hp Firmware	2024-11-21	N/A
Aterm WG1200HP firmware Ver1.0.31 and earlier allows attacker with administrator rights to execute arbitrary OS commands via sysCmd in formWsc parameter.
CVE-2018-0625	1 Nec	2 Aterm Wg1200hp, Aterm Wg1200hp Firmware	2024-11-21	N/A
Aterm WG1200HP firmware Ver1.0.31 and earlier allows attacker with administrator rights to execute arbitrary OS commands via formSysCmd parameter.
CVE-2011-1323	2 Nec, Yamaha	52 Ip38x\/1000, Ip38x\/103, Ip38x\/105 and 49 more	2024-08-06	N/A
Yamaha RTX, RT, SRT, RTV, RTW, and RTA series routers with firmware 6.x through 10.x, and NEC IP38X series routers with firmware 6.x through 10.x, do not properly handle IP header options, which allows remote attackers to cause a denial of service (device reboot) via a crafted option that triggers access to an invalid memory location.
CVE-2013-7314	1 Nec	12 Ip38x 1000, Ip38x 105, Ip38x 107e and 9 more	2024-08-06	N/A
The OSPF implementation on NEC IP38X, IX1000, IX2000, and IX3000 routers does not consider the possibility of duplicate Link State ID values in Link State Advertisement (LSA) packets before performing operations on the LSA database, which allows remote attackers to cause a denial of service (routing disruption) or obtain sensitive packet information via a crafted LSA packet, a related issue to CVE-2013-0149.

« first previous Page 6 of 6.