CVE-2018-16195

Summary

Aterm WF1200CR and Aterm WG1200CR (Aterm WF1200CR firmware Ver1.1.1 and earlier, Aterm WG1200CR firmware Ver1.0.1 and earlier) allows an attacker on the same network segment to execute arbitrary OS commands via SOAP interface of UPnP.

Affected Software

VendorProductVersion RangeStatus
NEC CorporationAterm WF1200CR and Aterm WG1200CR(Aterm WF1200CR firmware Ver1.1.1 and earlier, Aterm WG1200CR firmware Ver1.0.1 and earlier)affected

Weaknesses

  • OS Command Injection

ADP Enrichment

CVE Program Container

Additional References

References