CVE-2022-25621

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 11-03-2022 07:15

Last modified: - 22-03-2022 06:53

Total changes: - 2

Description

UUNIVERGE WA 1020 Ver8.2.11 and prior, UNIVERGE WA 1510 Ver8.2.11 and prior, UNIVERGE WA 1511 Ver8.2.11 and prior, UNIVERGE WA 1512 Ver8.2.11 and prior, UNIVERGE WA 2020 Ver8.2.11 and prior, UNIVERGE WA 2021 Ver8.2.11 and prior, UNIVERGE WA 2610-AP Ver8.2.11 and prior, UNIVERGE WA 2611-AP Ver8.2.11 and prior, UNIVERGE WA 2611E-AP Ver8.2.11 and prior, UNIVERGE WA WA2612-AP Ver8.2.11 and prior allows a remote attacker to execute arbitrary OS commands.

Common Vulnerability Scoring System (CVSS)

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Low

Attack complexity

Network

Attack vector

High

Availability

High

Confidentiality

High

Integrity

None

Privileges required

Unchanged

Scope

None

User interaction

9.8

Base score

3.9

5.9

Exploitability score

Impact score

Verification logic

AND

vendor=nec AND product=univerge_wa1020_firmware AND versionEndIncluding=8.2.11

vendor=nec AND product=univerge_wa1020 AND version=-

AND

vendor=nec AND product=univerge_wa1510_firmware AND versionEndIncluding=8.2.11

vendor=nec AND product=univerge_wa1510 AND version=-

AND

vendor=nec AND product=univerge_wa1511_firmware AND versionEndIncluding=8.2.11

vendor=nec AND product=univerge_wa1511 AND version=-

AND

vendor=nec AND product=univerge_wa1512_firmware AND versionEndIncluding=8.2.11

vendor=nec AND product=univerge_wa1512 AND version=-

AND

vendor=nec AND product=univerge_wa2020_firmware AND versionEndIncluding=8.2.11

vendor=nec AND product=univerge_wa2020 AND version=-

AND

vendor=nec AND product=univerge_wa2021_firmware AND versionEndIncluding=8.2.11

vendor=nec AND product=univerge_wa2021 AND version=-

AND

vendor=nec AND product=univerge_wa2610-ap_firmware AND versionEndIncluding=8.2.11

vendor=nec AND product=univerge_wa2610-ap AND version=-

AND

vendor=nec AND product=univerge_wa2611-ap_firmware AND versionEndIncluding=8.2.11

vendor=nec AND product=univerge_wa2611-ap AND version=-

AND

vendor=nec AND product=univerge_wa2611e-ap_firmware AND versionEndIncluding=8.2.11

vendor=nec AND product=univerge_wa2611e-ap AND version=-

AND

vendor=nec AND product=univerge_wa2612-ap_firmware AND versionEndIncluding=8.2.11

vendor=nec AND product=univerge_wa2612-ap AND version=-

Reference

https://jpn.nec.com/security-info/secinfo/nv22-004_en.html

Keywords

CVE-2022-25621

Common vulnerabilities & exposures (CVE)

Description

Common Vulnerability Scoring System (CVSS)

Verification logic

Reference

NVD

CVE-2022-25621

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures