Vulnerabilities > Necplatforms

DATE CVE VULNERABILITY TITLE RISK
2021-03-26 CVE-2021-20677 Unspecified vulnerability in Necplatforms products
UNIVERGE Aspire series PBX (UNIVERGE Aspire WX from 1.00 to 3.51, UNIVERGE Aspire UX from 1.00 to 9.70, UNIVERGE SV9100 from 1.00 to 10.70, and SL2100 from 1.00 to 3.00) allows a remote authenticated attacker to cause system down and a denial of service (DoS) condition by sending a specially crafted command.
network
necplatforms
3.5
2020-12-14 CVE-2020-5637 Improper Validation of Integrity Check Value vulnerability in Necplatforms Aterm Sa3500G Firmware
Improper validation of integrity check value vulnerability in Aterm SA3500G firmware versions prior to Ver.
low complexity
necplatforms CWE-354
5.2
2020-12-14 CVE-2020-5636 OS Command Injection vulnerability in Necplatforms Aterm Sa3500G Firmware
Aterm SA3500G firmware versions prior to Ver.
low complexity
necplatforms CWE-78
5.2
2020-12-14 CVE-2020-5635 OS Command Injection vulnerability in Necplatforms Aterm Sa3500G Firmware
Aterm SA3500G firmware versions prior to Ver.
low complexity
necplatforms CWE-78
5.8
2018-07-26 CVE-2018-0614 Cross-site Scripting vulnerability in Necplatforms products
Cross-site scripting vulnerability in NEC Platforms Calsos CSDX and CSDJ series products (CSDX 1.37210411 and earlier, CSDX(P) 4.37210411 and earlier, CSDX(D) 3.37210411 and earlier, CSDX(S) 2.37210411 and earlier, CSDJ-B 01.03.00 and earlier, CSDJ-H 01.03.00 and earlier, CSDJ-D 01.03.00 and earlier, CSDJ-A 03.00.00) allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
4.3
2018-07-26 CVE-2018-0613 Improper Privilege Management vulnerability in Necplatforms products
NEC Platforms Calsos CSDX and CSDJ series products (CSDX 1.37210411 and earlier, CSDX(P) 4.37210411 and earlier, CSDX(D) 3.37210411 and earlier, CSDX(S) 2.37210411 and earlier, CSDJ-B 01.03.00 and earlier, CSDJ-H 01.03.00 and earlier, CSDJ-D 01.03.00 and earlier, CSDJ-A 03.00.00) allows remote authenticated attackers to bypass access restriction to conduct arbitrary operations with administrative privilege via unspecified vectors.
network
low complexity
necplatforms CWE-269
6.5