Vulnerabilities > NEC > Aterm W300P Firmware > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-01-09 | CVE-2018-0633 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in NEC Aterm W300P Firmware 1.0.12/1.0.13/1.0.3 Buffer overflow in Aterm W300P Ver1.0.13 and earlier allows attacker with administrator rights to execute arbitrary code via submit-url parameter. | 7.2 |
| 2019-01-09 | CVE-2018-0632 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in NEC Aterm W300P Firmware 1.0.12/1.0.13/1.0.3 Buffer overflow in Aterm W300P Ver1.0.13 and earlier allows attacker with administrator rights to execute arbitrary code via HTTP request and response. | 7.2 |
| 2019-01-09 | CVE-2018-0631 | OS Command Injection vulnerability in NEC Aterm W300P Firmware 1.0.12/1.0.13/1.0.3 Aterm W300P Ver1.0.13 and earlier allows attacker with administrator rights to execute arbitrary OS commands via targetAPSsid parameter. | 7.2 |
| 2019-01-09 | CVE-2018-0630 | OS Command Injection vulnerability in NEC Aterm W300P Firmware 1.0.12/1.0.13/1.0.3 Aterm W300P Ver1.0.13 and earlier allows attacker with administrator rights to execute arbitrary OS commands via sysCmd parameter. | 7.2 |
| 2019-01-09 | CVE-2018-0629 | OS Command Injection vulnerability in NEC Aterm W300P Firmware 1.0.12/1.0.13/1.0.3 Aterm W300P Ver1.0.13 and earlier allows attacker with administrator rights to execute arbitrary OS commands via HTTP request and response. | 7.2 |