Medium severity6.5NVD Advisory· Published Mar 27, 2026· Updated Apr 20, 2026
CVE-2026-4309
CVE-2026-4309
Description
Missing Authorization vulnerability in NEC Platforms, Ltd. Aterm Series allows a attacker to get a specific device information and change the settings via network.
Affected products
21- cpe:2.3:o:nec:aterm_w1200ex-ms_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:nec:aterm_wg1200hp2_firmware:*:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:o:nec:aterm_wg1200hp2_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:nec:aterm_wg1200hp4_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:nec:aterm_wg1200hs3_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:nec:aterm_wg1800hp4_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:nec:aterm_wg1200hp3_firmware:*:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:o:nec:aterm_wg1200hp3_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:nec:aterm_wg1200hs2_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:nec:aterm_wg1200hs4_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:nec:aterm_wx3000hp_firmware:*:*:*:*:*:*:*:*range: <2.5.0
- cpe:2.3:o:nec:aterm_wg1800hp3_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:nec:aterm_wg1900hp2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:nec:aterm_wg1900hp_firmware:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:nec:aterm_wg1900hp_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:nec:aterm_wx3600hp_firmware:*:*:*:*:*:*:*:*range: <=1.5.3
cpe:2.3:o:nec:aterm_wg2600hm4_firmware:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:nec:aterm_wg2600hm4_firmware:*:*:*:*:*:*:*:*range: <1.4.2
- cpe:2.3:o:nec:aterm_wg2600hp4_firmware:*:*:*:*:*:*:*:*range: <1.4.2
Patches
Vulnerability mechanics
References
1- jpn.nec.com/security-info/secinfo/nv26-001_en.htmlnvdVendor Advisory
News mentions
0No linked articles in our index yet.