CVE-2022-25621
Severity Score
9.8
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
UUNIVERGE WA 1020 Ver8.2.11 and prior, UNIVERGE WA 1510 Ver8.2.11 and prior, UNIVERGE WA 1511 Ver8.2.11 and prior, UNIVERGE WA 1512 Ver8.2.11 and prior, UNIVERGE WA 2020 Ver8.2.11 and prior, UNIVERGE WA 2021 Ver8.2.11 and prior, UNIVERGE WA 2610-AP Ver8.2.11 and prior, UNIVERGE WA 2611-AP Ver8.2.11 and prior, UNIVERGE WA 2611E-AP Ver8.2.11 and prior, UNIVERGE WA WA2612-AP Ver8.2.11 and prior allows a remote attacker to execute arbitrary OS commands.
UNIVERGE WA 1020 Versiones 8.2.11 y anteriores, UNIVERGE WA 1510 Versiones 8.2.11 y anteriores, UNIVERGE WA 1511 Versiones 8.2.11 y anteriores, UNIVERGE WA 1512 Versiones 8.2.11 y anteriores, UNIVERGE WA 2020 Versiones 8.2.11 y anteriores, UNIVERGE WA 2021 Versiones 8.2. 11 y anteriores, UNIVERGE WA 2610-AP Versiones 8.2.11 y anteriores, UNIVERGE WA 2611-AP Versiones 8.2.11 y anteriores, UNIVERGE WA 2611E-AP Versiones 8.2.11 y anteriores, UNIVERGE WA WA2612-AP Versiones 8.2.11 y anteriores permiten a un atacante remoto ejecutar comandos arbitrarios del Sistema Operativo
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2022-02-21 CVE Reserved
- 2022-03-11 CVE Published
- 2024-08-03 CVE Updated
- 2024-11-24 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://jpn.nec.com/security-info/secinfo/nv22-004_en.html | 2022-03-22 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Nec Search vendor "Nec" | Univerge Wa1020 Firmware Search vendor "Nec" for product "Univerge Wa1020 Firmware" | <= 8.2.11 Search vendor "Nec" for product "Univerge Wa1020 Firmware" and version " <= 8.2.11" | - |
Affected
| in | Nec Search vendor "Nec" | Univerge Wa1020 Search vendor "Nec" for product "Univerge Wa1020" | - | - |
Safe
|
| Nec Search vendor "Nec" | Univerge Wa1510 Firmware Search vendor "Nec" for product "Univerge Wa1510 Firmware" | <= 8.2.11 Search vendor "Nec" for product "Univerge Wa1510 Firmware" and version " <= 8.2.11" | - |
Affected
| in | Nec Search vendor "Nec" | Univerge Wa1510 Search vendor "Nec" for product "Univerge Wa1510" | - | - |
Safe
|
| Nec Search vendor "Nec" | Univerge Wa1511 Firmware Search vendor "Nec" for product "Univerge Wa1511 Firmware" | <= 8.2.11 Search vendor "Nec" for product "Univerge Wa1511 Firmware" and version " <= 8.2.11" | - |
Affected
| in | Nec Search vendor "Nec" | Univerge Wa1511 Search vendor "Nec" for product "Univerge Wa1511" | - | - |
Safe
|
| Nec Search vendor "Nec" | Univerge Wa1512 Firmware Search vendor "Nec" for product "Univerge Wa1512 Firmware" | <= 8.2.11 Search vendor "Nec" for product "Univerge Wa1512 Firmware" and version " <= 8.2.11" | - |
Affected
| in | Nec Search vendor "Nec" | Univerge Wa1512 Search vendor "Nec" for product "Univerge Wa1512" | - | - |
Safe
|
| Nec Search vendor "Nec" | Univerge Wa2020 Firmware Search vendor "Nec" for product "Univerge Wa2020 Firmware" | <= 8.2.11 Search vendor "Nec" for product "Univerge Wa2020 Firmware" and version " <= 8.2.11" | - |
Affected
| in | Nec Search vendor "Nec" | Univerge Wa2020 Search vendor "Nec" for product "Univerge Wa2020" | - | - |
Safe
|
| Nec Search vendor "Nec" | Univerge Wa2021 Firmware Search vendor "Nec" for product "Univerge Wa2021 Firmware" | <= 8.2.11 Search vendor "Nec" for product "Univerge Wa2021 Firmware" and version " <= 8.2.11" | - |
Affected
| in | Nec Search vendor "Nec" | Univerge Wa2021 Search vendor "Nec" for product "Univerge Wa2021" | - | - |
Safe
|
| Nec Search vendor "Nec" | Univerge Wa2610-ap Firmware Search vendor "Nec" for product "Univerge Wa2610-ap Firmware" | <= 8.2.11 Search vendor "Nec" for product "Univerge Wa2610-ap Firmware" and version " <= 8.2.11" | - |
Affected
| in | Nec Search vendor "Nec" | Univerge Wa2610-ap Search vendor "Nec" for product "Univerge Wa2610-ap" | - | - |
Safe
|
| Nec Search vendor "Nec" | Univerge Wa2611-ap Firmware Search vendor "Nec" for product "Univerge Wa2611-ap Firmware" | <= 8.2.11 Search vendor "Nec" for product "Univerge Wa2611-ap Firmware" and version " <= 8.2.11" | - |
Affected
| in | Nec Search vendor "Nec" | Univerge Wa2611-ap Search vendor "Nec" for product "Univerge Wa2611-ap" | - | - |
Safe
|
| Nec Search vendor "Nec" | Univerge Wa2611e-ap Firmware Search vendor "Nec" for product "Univerge Wa2611e-ap Firmware" | <= 8.2.11 Search vendor "Nec" for product "Univerge Wa2611e-ap Firmware" and version " <= 8.2.11" | - |
Affected
| in | Nec Search vendor "Nec" | Univerge Wa2611e-ap Search vendor "Nec" for product "Univerge Wa2611e-ap" | - | - |
Safe
|
| Nec Search vendor "Nec" | Univerge Wa2612-ap Firmware Search vendor "Nec" for product "Univerge Wa2612-ap Firmware" | <= 8.2.11 Search vendor "Nec" for product "Univerge Wa2612-ap Firmware" and version " <= 8.2.11" | - |
Affected
| in | Nec Search vendor "Nec" | Univerge Wa2612-ap Search vendor "Nec" for product "Univerge Wa2612-ap" | - | - |
Safe
|