cvedb.io
CVE-2023-3332
MEDIUM · CVSS 4.8
EPSS exploitation probability: 0%
Published 2023-06-28T02:15:49.650 · Last modified 2026-06-17T06:13:50.183

Summary

Improper Neutralization of Input During Web Page Generation vulnerability in NEC Corporation Aterm Aterm WG2600HP2, WG2600HP, WG2200HP, WG1800HP2, WG1800HP, WG1400HP, WG600HP, WG300HP, WF300HP, WR9500N, WR9300N, WR8750N, WR8700N, WR8600N, WR8370N, WR8175N and WR8170N all versions allows a attacker to  execute an arbitrary script, after obtaining a high privilege exploiting CVE-2023-3330 and CVE-2023-3331 vulnerabilities.

Affected products

nec — aterm_wf300hp_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when nec ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.