Medium severity6.5NVD Advisory· Published Mar 27, 2026· Updated Apr 20, 2026

CVE-2026-4309

Description

Missing Authorization vulnerability in NEC Platforms, Ltd. Aterm Series allows a attacker to get a specific device information and change the settings via network.

Affected products

NEC/Aterm Wg2600hs Firmware
cpe:2.3:o:nec:aterm_wg2600hs_firmware:*:*:*:*:*:*:*:*
Range: <1.7.2
NEC/Aterm Wf1200cr Firmware
cpe:2.3:o:nec:aterm_wf1200cr_firmware:*:*:*:*:*:*:*:*
Range: <1.6.0
NEC/Aterm Wg1200cr Firmware
cpe:2.3:o:nec:aterm_wg1200cr_firmware:*:*:*:*:*:*:*:*
Range: <1.5.0
NEC/Aterm Wg2600hp4 Firmware
cpe:2.3:o:nec:aterm_wg2600hp4_firmware:*:*:*:*:*:*:*:*
Range: <1.4.2
NEC/Aterm Wg2600hm4 Firmware
cpe:2.3:o:nec:aterm_wg2600hm4_firmware:*:*:*:*:*:*:*:*
Range: <1.4.2
NEC/Aterm Wg2600hs2 Firmware
cpe:2.3:o:nec:aterm_wg2600hs2_firmware:*:*:*:*:*:*:*:*
Range: <1.3.2
NEC/Aterm Wx3000hp Firmware
cpe:2.3:o:nec:aterm_wx3000hp_firmware:*:*:*:*:*:*:*:*
Range: <2.5.0
NEC/Aterm Wx3600hp Firmware
cpe:2.3:o:nec:aterm_wx3600hp_firmware:*:*:*:*:*:*:*:*
Range: <=1.5.3
NEC/Aterm W1200ex Ms Firmware
cpe:2.3:o:nec:aterm_w1200ex-ms_firmware:*:*:*:*:*:*:*:*
NEC/Aterm Wg1200hp2 Firmware
cpe:2.3:o:nec:aterm_wg1200hp2_firmware:*:*:*:*:*:*:*:*
NEC/Aterm Wg1900hp Firmware
cpe:2.3:o:nec:aterm_wg1900hp_firmware:*:*:*:*:*:*:*:*
NEC/Aterm Wg1200hs2 Firmware
cpe:2.3:o:nec:aterm_wg1200hs2_firmware:*:*:*:*:*:*:*:*
NEC/Aterm Wg1800hp3 Firmware
cpe:2.3:o:nec:aterm_wg1800hp3_firmware:*:*:*:*:*:*:*:*
NEC/Aterm Wg1200hp3 Firmware
cpe:2.3:o:nec:aterm_wg1200hp3_firmware:*:*:*:*:*:*:*:*
NEC/Aterm Wg1900hp2 Firmware
cpe:2.3:o:nec:aterm_wg1900hp2_firmware:*:*:*:*:*:*:*:*
NEC/Aterm Wg1200hs3 Firmware
cpe:2.3:o:nec:aterm_wg1200hs3_firmware:*:*:*:*:*:*:*:*
NEC/Aterm Wg1800hp4 Firmware
cpe:2.3:o:nec:aterm_wg1800hp4_firmware:*:*:*:*:*:*:*:*
NEC/Aterm Wg1200hp4 Firmware
cpe:2.3:o:nec:aterm_wg1200hp4_firmware:*:*:*:*:*:*:*:*
NEC/Aterm Wg1200hs4 Firmware
cpe:2.3:o:nec:aterm_wg1200hs4_firmware:*:*:*:*:*:*:*:*
NEC/Aterm Wx1500hp Firmware
cpe:2.3:o:nec:aterm_wx1500hp_firmware:*:*:*:*:*:*:*:*
Range: <1.4.2

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

jpn.nec.com/security-info/secinfo/nv26-001_en.htmlnvdVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.423
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000