9.8критическая
CVE-2026-4622
Описание
OS Command Injection vulnerability in NEC Platforms, Ltd. Aterm Series allows a attacker to execute arbitrary OS commands via network.
Затрагиваемое ПО
Nec Aterm wg2600hs firmwareNec Aterm wg2600hsNec Aterm wf1200cr firmwareNec Aterm wf1200crNec Aterm wg1200cr firmwareNec Aterm wg1200crNec Aterm wg2600hp4 firmwareNec Aterm wg2600hp4Nec Aterm wg2600hm4 firmwareNec Aterm wg2600hm4Nec Aterm wg2600hs2 firmwareNec Aterm wg2600hs2Nec Aterm wx3000hp firmwareNec Aterm wx3000hpNec Aterm wx3000hp2 firmwareNec Aterm wx3000hp2Nec Aterm gb1200pe firmwareNec Aterm gb1200pe
CVSS
| Балл | 9.8 — критическая |
| Вектор | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Источники
https://jpn.nec.com/security-info/secinfo/nv26-001_en.html