Vulnerabilities > CVE-2021-20712 - Unspecified vulnerability in NEC Aterm Wg2600Hs Firmware and Aterm Wx3000Hp Firmware

CVSS 5.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

NONE

network

low complexity

nec

NVD

Published: 2021-04-26

Updated: 2022-07-12

Summary

Improper access control vulnerability in NEC Aterm WG2600HS firmware Ver1.5.1 and earlier, and Aterm WX3000HP firmware Ver1.1.2 and earlier allows a device connected to the LAN side to be accessed from the WAN side due to the defect in the IPv6 firewall function.

Vulnerable Configurations

Part	Description	Count
OS	Nec NEC Aterm Wg2600Hs Firmware - NEC Aterm Wg2600Hs Firmware 1.3.2 NEC Aterm Wg2600Hs Firmware 1.5.1 NEC Aterm Wx3000Hp Firmware - NEC Aterm Wx3000Hp Firmware 1.1.2	5
Hardware	Nec NEC Aterm Wg2600Hs - NEC Aterm Wx3000Hp -	2

References

https://jvn.jp/en/jp/JVN29739718/index.html
https://jpn.nec.com/security-info/secinfo/nv21-010.html