CVE-2021-20621
Summary
| CVE | CVE-2021-20621 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2021-01-28 11:15:00 UTC |
| Updated | 2021-02-01 18:22:00 UTC |
| Description | Cross-site request forgery (CSRF) vulnerability in Aterm WG2600HP firmware Ver1.0.2 and earlier, and Aterm WG2600HP2 firmware Ver1.0.2 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors. |
Risk And Classification
Problem Types: CWE-352
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Aterm | Wg2600hp | - | All | All | All |
| Hardware | Aterm | Wg2600hp | - | All | All | All |
| Hardware | Aterm | Wg2600hp | - | All | All | All |
| Hardware | Aterm | Wg2600hp2 | - | All | All | All |
| Hardware | Aterm | Wg2600hp2 | - | All | All | All |
| Hardware | Aterm | Wg2600hp2 | - | All | All | All |
| Operating System | Aterm | Wg2600hp2 Firmware | All | All | All | All |
| Operating System | Aterm | Wg2600hp Firmware | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| NV21-005: セキュリティ情報 | NEC | MISC | jpn.nec.com | Third Party Advisory |
| Aterm製品における脆弱性への対処方法について|サポート技術情報|目的別で探す|Aterm(エーターム) サポートデスク | MISC | www.aterm.jp | Patch, Vendor Advisory |
| JVN#38248512: Multiple vulnerabilities in Aterm WF800HP, Aterm WG2600HP, and Aterm WG2600HP2 | MISC | jvn.jp | Third Party Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.