UUNIVERGE WA 1020 Ver8.2.11 and prior, UNIVERGE WA 1510 Ver8.2.11 and prior, UNIVERGE WA 1511 Ver8.2.11 and prior, UNIVERGE WA 1512 Ver8.2.11 and prior, UNIVERGE WA 2020 Ver8.2.11 and prior, UNIVERGE WA 2021 Ver8.2.11 and prior, UNIVERGE WA 2610-AP Ver8.2.11 and prior, UNIVERGE WA 2611-AP Ver8.2.11 and prior, UNIVERGE WA 2611E-AP Ver8.2.11 and prior, UNIVERGE WA WA2612-AP Ver8.2.11 and prior allows a remote attacker to execute arbitrary OS commands.
References
Link | Resource |
---|---|
https://jpn.nec.com/security-info/secinfo/nv22-004_en.html | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
AND |
|
Configuration 7 (hide)
AND |
|
Configuration 8 (hide)
AND |
|
Configuration 9 (hide)
AND |
|
Configuration 10 (hide)
AND |
|
History
22 Mar 2022, 17:53
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://jpn.nec.com/security-info/secinfo/nv22-004_en.html - Vendor Advisory | |
CWE | CWE-78 | |
First Time |
Nec univerge Wa1512 Firmware
Nec univerge Wa2611e-ap Firmware Nec univerge Wa1510 Nec univerge Wa1510 Firmware Nec univerge Wa1511 Firmware Nec univerge Wa2021 Nec univerge Wa2611-ap Nec univerge Wa2612-ap Firmware Nec univerge Wa2610-ap Firmware Nec univerge Wa2611-ap Firmware Nec univerge Wa2021 Firmware Nec univerge Wa1020 Firmware Nec univerge Wa2610-ap Nec univerge Wa1511 Nec univerge Wa2611e-ap Nec univerge Wa1020 Nec univerge Wa2612-ap Nec univerge Wa1512 Nec univerge Wa2020 Firmware Nec univerge Wa2020 Nec |
|
CVSS |
v2 : v3 : |
v2 : 7.5
v3 : 9.8 |
CPE | cpe:2.3:h:nec:univerge_wa2610-ap:-:*:*:*:*:*:*:* cpe:2.3:o:nec:univerge_wa1511_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:nec:univerge_wa1020_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:nec:univerge_wa2021_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:nec:univerge_wa2020:-:*:*:*:*:*:*:* cpe:2.3:h:nec:univerge_wa2611e-ap:-:*:*:*:*:*:*:* cpe:2.3:o:nec:univerge_wa1510_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:nec:univerge_wa2611e-ap_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:nec:univerge_wa1512:-:*:*:*:*:*:*:* cpe:2.3:h:nec:univerge_wa1510:-:*:*:*:*:*:*:* cpe:2.3:o:nec:univerge_wa2020_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:nec:univerge_wa1511:-:*:*:*:*:*:*:* cpe:2.3:o:nec:univerge_wa1512_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:nec:univerge_wa2610-ap_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:nec:univerge_wa2612-ap:-:*:*:*:*:*:*:* cpe:2.3:h:nec:univerge_wa1020:-:*:*:*:*:*:*:* cpe:2.3:o:nec:univerge_wa2611-ap_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:nec:univerge_wa2611-ap:-:*:*:*:*:*:*:* cpe:2.3:o:nec:univerge_wa2612-ap_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:nec:univerge_wa2021:-:*:*:*:*:*:*:* |
11 Mar 2022, 18:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-03-11 18:15
Updated : 2023-12-10 14:22
NVD link : CVE-2022-25621
Mitre link : CVE-2022-25621
CVE.ORG link : CVE-2022-25621
JSON object : View
Products Affected
nec
- univerge_wa2021
- univerge_wa1510
- univerge_wa1511
- univerge_wa2020_firmware
- univerge_wa2611e-ap
- univerge_wa2021_firmware
- univerge_wa2610-ap_firmware
- univerge_wa2020
- univerge_wa2611-ap
- univerge_wa2612-ap
- univerge_wa1510_firmware
- univerge_wa1020
- univerge_wa2612-ap_firmware
- univerge_wa2610-ap
- univerge_wa2611e-ap_firmware
- univerge_wa1020_firmware
- univerge_wa1511_firmware
- univerge_wa1512_firmware
- univerge_wa2611-ap_firmware
- univerge_wa1512
CWE
CWE-78
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')