CVE-2023-3332

Published: Jun 28, 2023

Modified: Dec 4, 2024

PUBLISHED

Description

Improper Neutralization of Input During Web Page Generation vulnerability in NEC Corporation Aterm Aterm WG2600HP2, WG2600HP, WG2200HP, WG1800HP2, WG1800HP, WG1400HP, WG600HP, WG300HP, WF300HP, WR9500N, WR9300N, WR8750N, WR8700N, WR8600N, WR8370N, WR8175N and WR8170N all versions allows a attacker to execute an arbitrary script, after obtaining a high privilege exploiting CVE-2023-3330 and CVE-2023-3331 vulnerabilities.

Vendor	Product	Versions
NEC Corporation	Aterm WG2600HP2	affected `all versions`
NEC Corporation	Aterm WG2600HP	affected `all versions`
NEC Corporation	Aterm WG2200HP	affected `all versions`
NEC Corporation	Aterm WG2200HP	affected `all versions`
NEC Corporation	Aterm WG1800HP2	affected `all versions`
NEC Corporation	Aterm WG1800HP	affected `all versions`
NEC Corporation	Aterm WG1400HP	affected `all versions`
NEC Corporation	Aterm WG600HP	affected `all versions`
NEC Corporation	Aterm WG300HP	affected `all versions`
NEC Corporation	Aterm WF300HP	affected `all versions`
NEC Corporation	Aterm WR9500N	affected `all versions`
NEC Corporation	Aterm WR9300N	affected `all versions`
NEC Corporation	Aterm WR8750N	affected `all versions`
NEC Corporation	Aterm WR8700N	affected `all versions`
NEC Corporation	Aterm WR8600N	affected `all versions`
NEC Corporation	Aterm WR8370N	affected `all versions`
NEC Corporation	Aterm WR8175N	affected `all versions`
NEC Corporation	Aterm WR8170N	affected `all versions`

Weaknesses (CWE)

CWE-79

References

https://https://jpn.nec.com/security-info/secinfo/nv23-007_en.html

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2023-3332

Description

Affected Products

Weaknesses (CWE)

References