#VU52009 Improper access control in Aterm WG2600HS and Aterm WX3000HP - CVE-2021-20712

Cybersecurity Help s.r.o.

Published: 2021-04-09

Vulnerability identifier: #VU52009

Vulnerability risk: Medium

CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2021-20712

CWE-ID: CWE-284

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Aterm WG2600HS
Hardware solutions / Routers & switches, VoIP, GSM, etc
Aterm WX3000HP
Hardware solutions / Routers & switches, VoIP, GSM, etc

Vendor: NEC Corporation

Description

The vulnerability allows a remote attacker to gain unauthorized access to otherwise restricted functionality.

The vulnerability exists due to improper access restrictions in the IPv6 firewall function. A remote attacker can access devices connected to the LAN side from the WAN side.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Aterm WG2600HS: 1.5.1

Aterm WX3000HP: 1.1.2

External links
https://jvn.jp/en/jp/JVN29739718/index.html
https://jpn.nec.com/security-info/secinfo/nv21-010.html

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in NEC Corporation Aterm WF1200CR, WG1200CR, WG2600HS and WX3000HP