Vulnerabilities > Necplatforms
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-03-26 | CVE-2021-20677 | Unspecified vulnerability in Necplatforms products UNIVERGE Aspire series PBX (UNIVERGE Aspire WX from 1.00 to 3.51, UNIVERGE Aspire UX from 1.00 to 9.70, UNIVERGE SV9100 from 1.00 to 10.70, and SL2100 from 1.00 to 3.00) allows a remote authenticated attacker to cause system down and a denial of service (DoS) condition by sending a specially crafted command. | 3.1 |
| 2020-12-14 | CVE-2020-5637 | Improper Validation of Integrity Check Value vulnerability in Necplatforms Aterm Sa3500G Firmware Improper validation of integrity check value vulnerability in Aterm SA3500G firmware versions prior to Ver. | 6.8 |
| 2020-12-14 | CVE-2020-5636 | OS Command Injection vulnerability in Necplatforms Aterm Sa3500G Firmware Aterm SA3500G firmware versions prior to Ver. | 6.8 |
| 2020-12-14 | CVE-2020-5635 | OS Command Injection vulnerability in Necplatforms Aterm Sa3500G Firmware Aterm SA3500G firmware versions prior to Ver. | 8.8 |
| 2018-07-26 | CVE-2018-0614 | Cross-site Scripting vulnerability in Necplatforms products Cross-site scripting vulnerability in NEC Platforms Calsos CSDX and CSDJ series products (CSDX 1.37210411 and earlier, CSDX(P) 4.37210411 and earlier, CSDX(D) 3.37210411 and earlier, CSDX(S) 2.37210411 and earlier, CSDJ-B 01.03.00 and earlier, CSDJ-H 01.03.00 and earlier, CSDJ-D 01.03.00 and earlier, CSDJ-A 03.00.00) allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 6.1 |
| 2018-07-26 | CVE-2018-0613 | Improper Privilege Management vulnerability in Necplatforms products NEC Platforms Calsos CSDX and CSDJ series products (CSDX 1.37210411 and earlier, CSDX(P) 4.37210411 and earlier, CSDX(D) 3.37210411 and earlier, CSDX(S) 2.37210411 and earlier, CSDJ-B 01.03.00 and earlier, CSDJ-H 01.03.00 and earlier, CSDJ-D 01.03.00 and earlier, CSDJ-A 03.00.00) allows remote authenticated attackers to bypass access restriction to conduct arbitrary operations with administrative privilege via unspecified vectors. | 8.8 |