CVE-2026-4309

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2026-4309
Missing Authorization vulnerability in NEC Platforms, Ltd. Aterm Series allows a attacker to get a specific device information and change the settings via network.

6.5 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 2.5

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact LOW

Availability Impact NONE

Scope UNCHANGED

References
Link Resource
https://jpn.nec.com/security-info/secinfo/nv26-001_en.html Vendor Advisory
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:nec:aterm_wg2600hs_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:nec:aterm_wg2600hs:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:nec:aterm_wf1200cr_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:nec:aterm_wf1200cr:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:nec:aterm_wg1200cr_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:nec:aterm_wg1200cr:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:nec:aterm_wg2600hp4_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:nec:aterm_wg2600hp4:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:nec:aterm_wg2600hm4_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:nec:aterm_wg2600hm4:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:nec:aterm_wg2600hs2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:nec:aterm_wg2600hs2:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
cpe:2.3:o:nec:aterm_wx3000hp_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:nec:aterm_wx3000hp:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND
cpe:2.3:o:nec:aterm_wx3600hp_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:nec:aterm_wx3600hp:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND
cpe:2.3:o:nec:aterm_w1200ex-ms_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:nec:aterm_w1200ex-ms:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND
cpe:2.3:o:nec:aterm_wg1200hp2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:nec:aterm_wg1200hp2:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND
cpe:2.3:o:nec:aterm_wg1900hp_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:nec:aterm_wg1900hp:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND
cpe:2.3:o:nec:aterm_wg1200hs2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:nec:aterm_wg1200hs2:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND
cpe:2.3:o:nec:aterm_wg1800hp3_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:nec:aterm_wg1800hp3:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND
cpe:2.3:o:nec:aterm_wg1200hp3_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:nec:aterm_wg1200hp3:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND
cpe:2.3:o:nec:aterm_wg1900hp2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:nec:aterm_wg1900hp2:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND
cpe:2.3:o:nec:aterm_wg1200hs3_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:nec:aterm_wg1200hs3:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND
cpe:2.3:o:nec:aterm_wg1800hp4_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:nec:aterm_wg1800hp4:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND
cpe:2.3:o:nec:aterm_wg1200hp4_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:nec:aterm_wg1200hp4:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND
cpe:2.3:o:nec:aterm_wg1200hs4_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:nec:aterm_wg1200hs4:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND
cpe:2.3:o:nec:aterm_wx1500hp_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:nec:aterm_wx1500hp:-:*:*:*:*:*:*:*
History

20 Apr 2026, 15:15

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 6.5
References () https://jpn.nec.com/security-info/secinfo/nv26-001_en.html - () https://jpn.nec.com/security-info/secinfo/nv26-001_en.html - Vendor Advisory
CPE cpe:2.3:h:nec:aterm_wf1200cr:-:*:*:*:*:*:*:*
cpe:2.3:o:nec:aterm_wg1200hs2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:nec:aterm_w1200ex-ms:-:*:*:*:*:*:*:*
cpe:2.3:h:nec:aterm_wg1800hp4:-:*:*:*:*:*:*:*
cpe:2.3:h:nec:aterm_wg1800hp3:-:*:*:*:*:*:*:*
cpe:2.3:o:nec:aterm_wg2600hp4_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:nec:aterm_wg1900hp2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:nec:aterm_wx1500hp:-:*:*:*:*:*:*:*
cpe:2.3:o:nec:aterm_wg1200hp3_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:nec:aterm_wg1200hp2:-:*:*:*:*:*:*:*
cpe:2.3:h:nec:aterm_wg1900hp:-:*:*:*:*:*:*:*
cpe:2.3:o:nec:aterm_wg1800hp4_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:nec:aterm_wg1200hp4_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:nec:aterm_wg1200hs4_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:nec:aterm_wg1200hs4:-:*:*:*:*:*:*:*
cpe:2.3:h:nec:aterm_wg2600hm4:-:*:*:*:*:*:*:*
cpe:2.3:o:nec:aterm_wg1900hp_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:nec:aterm_wg1800hp3_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:nec:aterm_wx3000hp_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:nec:aterm_wg2600hs_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:nec:aterm_wg1200hp4:-:*:*:*:*:*:*:*
cpe:2.3:h:nec:aterm_wx3600hp:-:*:*:*:*:*:*:*
cpe:2.3:o:nec:aterm_wg1200hp2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:nec:aterm_wg2600hp4:-:*:*:*:*:*:*:*
cpe:2.3:o:nec:aterm_wf1200cr_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:nec:aterm_wg1200hp3:-:*:*:*:*:*:*:*
cpe:2.3:o:nec:aterm_wx1500hp_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:nec:aterm_wx3600hp_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:nec:aterm_wg2600hs:-:*:*:*:*:*:*:*
cpe:2.3:h:nec:aterm_wx3000hp:-:*:*:*:*:*:*:*
cpe:2.3:h:nec:aterm_wg2600hs2:-:*:*:*:*:*:*:*
cpe:2.3:o:nec:aterm_w1200ex-ms_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:nec:aterm_wg1200hs2:-:*:*:*:*:*:*:*
cpe:2.3:o:nec:aterm_wg2600hs2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:nec:aterm_wg1200cr_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:nec:aterm_wg1200hs3_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:nec:aterm_wg1200cr:-:*:*:*:*:*:*:*
cpe:2.3:o:nec:aterm_wg2600hm4_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:nec:aterm_wg1900hp2:-:*:*:*:*:*:*:*
cpe:2.3:h:nec:aterm_wg1200hs3:-:*:*:*:*:*:*:*
First Time Nec aterm Wg2600hm4 Firmware
Nec aterm Wg1200hp3
Nec aterm Wx3000hp Firmware
Nec aterm Wg1900hp
Nec aterm Wg1200hp4 Firmware
Nec aterm Wg2600hp4
Nec aterm Wf1200cr Firmware
Nec aterm Wx1500hp
Nec aterm W1200ex-ms
Nec aterm Wg1900hp2 Firmware
Nec aterm Wg2600hs2
Nec aterm Wg1800hp4
Nec aterm Wg2600hp4 Firmware
Nec aterm Wg1200hs3
Nec aterm Wg1900hp2
Nec aterm Wg1800hp4 Firmware
Nec aterm Wx1500hp Firmware
Nec aterm Wf1200cr
Nec aterm Wg2600hm4
Nec aterm W1200ex-ms Firmware
Nec aterm Wg1200hp3 Firmware
Nec aterm Wg1200hs4
Nec aterm Wg1800hp3
Nec aterm Wg1800hp3 Firmware
Nec aterm Wg1200hp2
Nec aterm Wg1200hs2 Firmware
Nec aterm Wx3600hp Firmware
Nec aterm Wg1200hp4
Nec aterm Wg2600hs
Nec aterm Wg1200hs2
Nec
Nec aterm Wg1900hp Firmware
Nec aterm Wg1200cr
Nec aterm Wg2600hs Firmware
Nec aterm Wg1200hs4 Firmware
Nec aterm Wg2600hs2 Firmware
Nec aterm Wx3000hp
Nec aterm Wx3600hp
Nec aterm Wg1200hs3 Firmware
Nec aterm Wg1200hp2 Firmware
Nec aterm Wg1200cr Firmware

27 Mar 2026, 12:16

Type Values Removed Values Added
New CVE
Information

Published : 2026-03-27 12:16

Updated : 2026-04-20 15:15

NVD link : CVE-2026-4309

Mitre link : CVE-2026-4309

CVE.ORG link : CVE-2026-4309

JSON object : View

Products Affected

nec

  • aterm_wg2600hp4
  • aterm_wf1200cr_firmware
  • aterm_wx3000hp_firmware
  • aterm_wg1200hs4
  • aterm_wx3600hp
  • aterm_wg2600hs2
  • aterm_wg2600hp4_firmware
  • aterm_wg1200hp2_firmware
  • aterm_wf1200cr
  • aterm_wg1900hp2_firmware
  • aterm_wg1800hp3
  • aterm_wg1900hp
  • aterm_wx3000hp
  • aterm_wg1200hp3
  • aterm_wg1200hs3_firmware
  • aterm_wg1900hp_firmware
  • aterm_wx1500hp_firmware
  • aterm_wg1800hp4_firmware
  • aterm_wg2600hs
  • aterm_w1200ex-ms
  • aterm_wx3600hp_firmware
  • aterm_wx1500hp
  • aterm_wg1200cr_firmware
  • aterm_wg2600hm4
  • aterm_wg1200hp4_firmware
  • aterm_wg1200hp3_firmware
  • aterm_wg1200cr
  • aterm_wg1800hp3_firmware
  • aterm_wg2600hs_firmware
  • aterm_wg2600hs2_firmware
  • aterm_wg1200hs2_firmware
  • aterm_wg1200hp4
  • aterm_wg1200hp2
  • aterm_wg1200hs2
  • aterm_wg1800hp4
  • aterm_wg1200hs3
  • aterm_wg1200hs4_firmware
  • aterm_wg1900hp2
  • aterm_wg2600hm4_firmware
  • aterm_w1200ex-ms_firmware
CWE
CWE-862

Missing Authorization