Nec Aterm Hc100Rc Firmware vulnerabilities

8 known vulnerabilities affecting nec/aterm_hc100rc_firmware.

Total CVEs
8
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH8

Vulnerabilities

Page 1 of 1
CVE-2018-0640HIGHCVSS 7.2≤ 1.0.12019-01-09
CVE-2018-0640 [HIGH] CWE-119 CVE-2018-0640: Buffer overflow in Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to e Buffer overflow in Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary code via netWizard.cgi date parameter, time parameter, and offset parameter.
nvd
CVE-2018-0634HIGHCVSS 7.2≤ 1.0.12019-01-09
CVE-2018-0634 [HIGH] CWE-78 CVE-2018-0634: Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS commands via FactoryPassword parameter or bootmode parameter of a certain URL.
nvd
CVE-2018-0639HIGHCVSS 7.2≤ 1.0.12019-01-09
CVE-2018-0639 [HIGH] CWE-78 CVE-2018-0639: Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS commands via tools_firmware.cgi date parameter, time parameter, and offset parameter.
nvd
CVE-2018-0635HIGHCVSS 7.2≤ 1.0.12019-01-09
CVE-2018-0635 [HIGH] CWE-78 CVE-2018-0635: Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS commands via filename parameter.
nvd
CVE-2018-0641HIGHCVSS 7.2≤ 1.0.12019-01-09
CVE-2018-0641 [HIGH] CWE-119 CVE-2018-0641: Buffer overflow in Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to e Buffer overflow in Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary code via tools_system.cgi date parameter, time parameter, and offset parameter.
nvd
CVE-2018-0636HIGHCVSS 7.2≤ 1.0.12019-01-09
CVE-2018-0636 [HIGH] CVE-2018-0636: Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS commands via FactoryPassword parameter of a certain URL, different URL from CVE-2018-0634.
nvd
CVE-2018-0638HIGHCVSS 7.2≤ 1.0.12019-01-09
CVE-2018-0638 [HIGH] CWE-78 CVE-2018-0638: Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS commands via import.cgi encKey parameter.
nvd
CVE-2018-0637HIGHCVSS 7.2≤ 1.0.12019-01-09
CVE-2018-0637 [HIGH] CWE-78 CVE-2018-0637: Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS commands via export.cgi encKey parameter.
nvd