Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Nec Subscribe
Filtered by product Aterm Hc100rc
Total 8 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2018-0639 1 Nec 2 Aterm Hc100rc, Aterm Hc100rc Firmware 2019-01-17 9.0 HIGH 7.2 HIGH
Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS commands via tools_firmware.cgi date parameter, time parameter, and offset parameter.
CVE-2018-0634 1 Nec 2 Aterm Hc100rc, Aterm Hc100rc Firmware 2019-01-17 9.0 HIGH 7.2 HIGH
Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS commands via FactoryPassword parameter or bootmode parameter of a certain URL.
CVE-2018-0640 1 Nec 2 Aterm Hc100rc, Aterm Hc100rc Firmware 2019-01-16 6.5 MEDIUM 7.2 HIGH
Buffer overflow in Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary code via netWizard.cgi date parameter, time parameter, and offset parameter.
CVE-2018-0641 1 Nec 2 Aterm Hc100rc, Aterm Hc100rc Firmware 2019-01-16 6.5 MEDIUM 7.2 HIGH
Buffer overflow in Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary code via tools_system.cgi date parameter, time parameter, and offset parameter.
CVE-2018-0636 1 Nec 2 Aterm Hc100rc, Aterm Hc100rc Firmware 2019-01-15 9.0 HIGH 7.2 HIGH
Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS commands via FactoryPassword parameter of a certain URL, different URL from CVE-2018-0634.
CVE-2018-0635 1 Nec 2 Aterm Hc100rc, Aterm Hc100rc Firmware 2019-01-15 9.0 HIGH 7.2 HIGH
Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS commands via filename parameter.
CVE-2018-0637 1 Nec 2 Aterm Hc100rc, Aterm Hc100rc Firmware 2019-01-15 9.0 HIGH 7.2 HIGH
Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS commands via export.cgi encKey parameter.
CVE-2018-0638 1 Nec 2 Aterm Hc100rc, Aterm Hc100rc Firmware 2019-01-15 9.0 HIGH 7.2 HIGH
Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS commands via import.cgi encKey parameter.