CVE-2024-28010

Published: Mar 28, 2024Modified: Sep 29, 2025

9.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)

Description

Use of Hard-coded Password in NEC Corporation Aterm WG1800HP4, WG1200HS3, WG1900HP2, WG1200HP3, WG1800HP3, WG1200HS2, WG1900HP, WG1200HP2, W1200EX(-MS), WG1200HS, WG1200HP, WF300HP2, W300P, WF800HP, WR8165N, WG2200HP, WF1200HP2, WG1800HP2, WF1200HP, WG600HP, WG300HP, WF300HP, WG1800HP, WG1400HP, WR8175N, WR9300N, WR8750N, WR8160N, WR9500N, WR8600N, WR8370N, WR8170N, WR8700N, WR8300N, WR8150N, WR4100N, WR4500N, WR8100N, WR8500N, CR2500P, WR8400N, WR8200N, WR1200H, WR7870S, WR6670S, WR7850S, WR6650S, WR6600H, WR7800H, WM3400RN, WM3450RN, WM3500R, WM3600R, WM3800R, WR8166N, MR01LN MR02LN, WG1810HP(JE) and WG1810HP(MF) all versions allows a attacker to execute an arbitrary OS command via the internet.

Affected (59)

Nec

59 products

Aterm Wg1800hp4 Firmware

Aterm Wg1200hs3 Firmware

Aterm Wg1900hp2 Firmware

Aterm Wg1200hp3 Firmware

Aterm Wg1800hp3 Firmware

Aterm Wg1200hs2 Firmware

Aterm Wg1900hp Firmware

Aterm Wg1200hp2 Firmware

Aterm W1200ex Ms Firmware

Aterm Wg1200hs Firmware

Aterm Wg1200hp Firmware

Aterm Wf300hp2 Firmware

Aterm W300p Firmware

Aterm Wf800hp Firmware

Aterm Wr8165n Firmware

Aterm Wg2200hp Firmware

Aterm Wf1200hp2 Firmware

Aterm Wg1800hp2 Firmware

Aterm Wf1200hp Firmware

Aterm Wg600hp Firmware

Aterm Wg300hp Firmware

Aterm Wf300hp Firmware

Aterm Wg1800hp Firmware

Aterm Wg1400hp Firmware

Aterm Wr8175n Firmware

Aterm Wr9300n Firmware

Aterm Wr8750n Firmware

Aterm Wr8160n Firmware

Aterm Wr9500n Firmware

Aterm Wr8600n Firmware

Aterm Wr8370n Firmware

Aterm Wr8170n Firmware

Aterm Wr8700n Firmware

Aterm Wr8300n Firmware

Aterm Wr8150n Firmware

Aterm Wr4100n Firmware

Aterm Wr4500n Firmware

Aterm Wr8100n Firmware

Aterm Wr8500n Firmware

Aterm Cr2500p Firmware

Aterm Wr8400n Firmware

Aterm Wr8200n Firmware

Aterm Wr1200h Firmware

Aterm Wr7870s Firmware

Aterm Wr6670s Firmware

Aterm Wr7850s Firmware

Aterm Wr6650s Firmware

Aterm Wr6600h Firmware

Aterm Wr7800h Firmware

Aterm Wm3400rn Firmware

Aterm Wm3450rn Firmware

Aterm Wm3500r Firmware

Aterm Wm3600r Firmware

Aterm Wm3800r Firmware

Aterm Wr8166n Firmware

Aterm Mr01ln Firmware

Aterm Mr02ln Firmware

Aterm Wg1810hp(je) Firmware

Aterm Wg1810hp(mf) Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wg1800hp4 Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wg1800hp4	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wg1200hs3 Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wg1200hs3	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wg1900hp2 Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wg1900hp2	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wg1200hp3 Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wg1200hp3	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wg1800hp3 Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wg1800hp3	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wg1200hs2 Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wg1200hs2	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wg1900hp Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wg1900hp	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wg1200hp2 Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wg1200hp2	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm W1200ex Ms Firmware	All versions

Running on/with	Platform Versions
Nec Aterm W1200ex Ms	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wg1200hs Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wg1200hs	All versions

Configuration K

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wg1200hp Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wg1200hp	All versions

Configuration L

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wf300hp2 Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wf300hp2	All versions

Configuration M

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm W300p Firmware	All versions

Running on/with	Platform Versions
Nec Aterm W300p	All versions

Configuration N

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wf800hp Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wf800hp	All versions

Configuration O

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wr8165n Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wr8165n	All versions

Configuration P

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wg2200hp Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wg2200hp	All versions

Configuration Q

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wf1200hp2 Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wf1200hp2	All versions

Configuration R

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wg1800hp2 Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wg1800hp2	All versions

Configuration S

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wf1200hp Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wf1200hp	All versions

Configuration T

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wg600hp Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wg600hp	All versions

Configuration U

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wg300hp Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wg300hp	All versions

Configuration V

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wf300hp Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wf300hp	All versions

Configuration W

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wg1800hp Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wg1800hp	All versions

Configuration X

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wg1400hp Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wg1400hp	All versions

Configuration Y

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wr8175n Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wr8175n	All versions

Configuration Z

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wr9300n Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wr9300n	All versions

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wr8750n Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wr8750n	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wr8160n Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wr8160n	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wr9500n Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wr9500n	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wr8600n Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wr8600n	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wr8370n Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wr8370n	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wr8170n Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wr8170n	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wr8700n Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wr8700n	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wr8300n Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wr8300n	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wr8150n Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wr8150n	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wr4100n Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wr4100n	All versions

Configuration K

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wr4500n Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wr4500n	All versions

Configuration L

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wr8100n Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wr8100n	All versions

Configuration M

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wr8500n Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wr8500n	All versions

Configuration N

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Cr2500p Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Cr2500p	All versions

Configuration O

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wr8400n Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wr8400n	All versions

Configuration P

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wr8200n Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wr8200n	All versions

Configuration Q

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wr1200h Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wr1200h	All versions

Configuration R

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wr7870s Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wr7870s	All versions

Configuration S

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wr6670s Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wr6670s	All versions

Configuration T

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wr7850s Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wr7850s	All versions

Configuration U

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wr6650s Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wr6650s	All versions

Configuration V

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wr6600h Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wr6600h	All versions

Configuration W

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wr7800h Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wr7800h	All versions

Configuration X

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wm3400rn Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wm3400rn	All versions

Configuration Y

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wm3450rn Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wm3450rn	All versions

Configuration Z

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wm3500r Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wm3500r	All versions

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wm3600r Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wm3600r	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wm3800r Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wm3800r	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wr8166n Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wr8166n	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Mr01ln Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Mr01ln	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Mr02ln Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Mr02ln	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wg1810hp(je) Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wg1810hp(je)	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Nec Aterm Wg1810hp(mf) Firmware	All versions

Running on/with	Platform Versions
Nec Aterm Wg1810hp(mf)	All versions

Related CWEs

CWE-259

Use of Hard-coded Password

The product contains a hard-coded password, which it uses for its own inbound authentication or for outbound communication to external components.

References (2)

https://jpn.nec.com/security-info/secinfo/nv24-001_en.html

Source: psirt-info@cyber.jp.nec.com

Vendor Advisory

https://https://jpn.nec.com/security-info/secinfo/nv24-001_en.html

Source: af854a3a-2127-422b-91ae-364da2661108

Broken Link

Timeline

No history available yet.