CVE-2026-4621 (GCVE-0-2026-4621)
Vulnerability from cvelistv5 – Published: 2026-03-27 11:52 – Updated: 2026-04-10 04:13
VLAI?
Summary
Hidden Functionality vulnerability in NEC Platforms, Ltd. Aterm Series allows a attacker to enable telnet via network.
Severity ?
CWE
- CWE-912 - Hidden Functionality
Assigner
References
Impacted products
Credits
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-4621",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-03-27T12:57:21.304368Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-03-27T12:57:32.214Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unknown",
"product": "Aterm W1200EX(-MS)",
"vendor": "NEC Platforms, Ltd.",
"versions": [
{
"status": "affected",
"version": "All versions"
}
]
},
{
"defaultStatus": "unknown",
"product": "Aterm WG1200HP2",
"vendor": "NEC Platforms, Ltd.",
"versions": [
{
"status": "affected",
"version": "All versions"
}
]
},
{
"defaultStatus": "unknown",
"product": "Aterm WG1900HP",
"vendor": "NEC Platforms, Ltd.",
"versions": [
{
"status": "affected",
"version": "All versions"
}
]
},
{
"defaultStatus": "unknown",
"product": "Aterm WG1200HS2",
"vendor": "NEC Platforms, Ltd.",
"versions": [
{
"status": "affected",
"version": "All versions"
}
]
},
{
"defaultStatus": "unknown",
"product": "Aterm WG1800HP3",
"vendor": "NEC Platforms, Ltd.",
"versions": [
{
"status": "affected",
"version": "All versions"
}
]
},
{
"defaultStatus": "unknown",
"product": "Aterm WG1200HP3",
"vendor": "NEC Platforms, Ltd.",
"versions": [
{
"status": "affected",
"version": "All versions"
}
]
},
{
"defaultStatus": "unknown",
"product": "Aterm WG1900HP2",
"vendor": "NEC Platforms, Ltd.",
"versions": [
{
"status": "affected",
"version": "All versions"
}
]
},
{
"defaultStatus": "unknown",
"product": "Aterm WG1200HS3",
"vendor": "NEC Platforms, Ltd.",
"versions": [
{
"status": "affected",
"version": "All versions"
}
]
},
{
"defaultStatus": "unknown",
"product": "Aterm WG1800HP4",
"vendor": "NEC Platforms, Ltd.",
"versions": [
{
"status": "affected",
"version": "All versions"
}
]
},
{
"defaultStatus": "unknown",
"product": "Aterm WG1200HP4",
"vendor": "NEC Platforms, Ltd.",
"versions": [
{
"status": "affected",
"version": "All versions"
}
]
},
{
"defaultStatus": "unknown",
"product": "Aterm WG1200HS4",
"vendor": "NEC Platforms, Ltd.",
"versions": [
{
"status": "affected",
"version": "All versions"
}
]
},
{
"defaultStatus": "unknown",
"product": "Aterm WX1500HP",
"vendor": "NEC Platforms, Ltd.",
"versions": [
{
"status": "affected",
"version": "Before Ver. 1.4.2"
}
]
},
{
"defaultStatus": "unknown",
"product": "Aterm WG2600HS",
"vendor": "NEC Platforms, Ltd.",
"versions": [
{
"status": "affected",
"version": "Before Ver. 1.7.2"
}
]
},
{
"defaultStatus": "unknown",
"product": "Aterm WF1200CR",
"vendor": "NEC Platforms, Ltd.",
"versions": [
{
"status": "affected",
"version": "Before Ver. 1.6.0"
}
]
},
{
"defaultStatus": "unknown",
"product": "Aterm WG1200CR",
"vendor": "NEC Platforms, Ltd.",
"versions": [
{
"status": "affected",
"version": "Before Ver. 1.5.0"
}
]
},
{
"defaultStatus": "unknown",
"product": "Aterm WG2600HP4",
"vendor": "NEC Platforms, Ltd.",
"versions": [
{
"status": "affected",
"version": "Before Ver. 1.4.2"
}
]
},
{
"defaultStatus": "unknown",
"product": "Aterm WG2600HM4",
"vendor": "NEC Platforms, Ltd.",
"versions": [
{
"status": "affected",
"version": "Before Ver. 1.4.2"
}
]
},
{
"defaultStatus": "unknown",
"product": "Aterm WG2600HS2",
"vendor": "NEC Platforms, Ltd.",
"versions": [
{
"status": "affected",
"version": "Before Ver. 1.3.2"
}
]
},
{
"defaultStatus": "unknown",
"product": "Aterm WX3000HP",
"vendor": "NEC Platforms, Ltd.",
"versions": [
{
"status": "affected",
"version": "Before Ver. 2.5.0"
}
]
},
{
"defaultStatus": "unknown",
"product": "Aterm WX3000HP2",
"vendor": "NEC Platforms, Ltd.",
"versions": [
{
"status": "affected",
"version": "Before Ver. 1.3.2"
}
]
},
{
"defaultStatus": "unknown",
"product": "Aterm WX3600HP",
"vendor": "NEC Platforms, Ltd.",
"versions": [
{
"status": "affected",
"version": "Before Ver. 1.4.2"
}
]
},
{
"defaultStatus": "unknown",
"product": "Aterm GX1200HP",
"vendor": "NEC Platforms, Ltd.",
"versions": [
{
"status": "affected",
"version": "All versions"
}
]
},
{
"defaultStatus": "unknown",
"product": "Aterm GX1200HS4",
"vendor": "NEC Platforms, Ltd.",
"versions": [
{
"status": "affected",
"version": "All versions"
}
]
},
{
"defaultStatus": "unknown",
"product": "Aterm WG1200DM4",
"vendor": "NEC Platforms, Ltd.",
"versions": [
{
"status": "affected",
"version": "All versions"
}
]
},
{
"defaultStatus": "unknown",
"product": "Aterm GB1200PE",
"vendor": "NEC Platforms, Ltd.",
"versions": [
{
"status": "affected",
"version": "Before Ver. 1.3.1"
}
]
}
],
"credits": [
{
"lang": "en",
"type": "reporter",
"user": "00000000-0000-4000-9000-000000000000",
"value": "Chuya Hayakawa of Zero Zero One Co., Ltd."
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "Hidden Functionality vulnerability in NEC Platforms, Ltd. Aterm Series allows a attacker to enable telnet via network."
}
],
"value": "Hidden Functionality vulnerability in NEC Platforms, Ltd. Aterm Series allows a attacker to enable telnet via network."
}
],
"metrics": [
{
"cvssV4_0": {
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"attackComplexity": "HIGH",
"attackRequirements": "NONE",
"attackVector": "NETWORK",
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"exploitMaturity": "NOT_DEFINED",
"privilegesRequired": "NONE",
"providerUrgency": "NOT_DEFINED",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"userInteraction": "NONE",
"valueDensity": "NOT_DEFINED",
"vectorString": "CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"version": "4.0",
"vulnAvailabilityImpact": "LOW",
"vulnConfidentialityImpact": "LOW",
"vulnIntegrityImpact": "LOW",
"vulnerabilityResponseEffort": "NOT_DEFINED"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-912",
"description": "CWE-912: Hidden Functionality",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-04-10T04:13:59.147Z",
"orgId": "f2760a35-e0d8-4637-ac4c-cc1a2de3e282",
"shortName": "NEC"
},
"references": [
{
"url": "https://jpn.nec.com/security-info/secinfo/nv26-001_en.html"
}
],
"source": {
"discovery": "EXTERNAL"
},
"x_generator": {
"engine": "Vulnogram 0.2.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "f2760a35-e0d8-4637-ac4c-cc1a2de3e282",
"assignerShortName": "NEC",
"cveId": "CVE-2026-4621",
"datePublished": "2026-03-27T11:52:48.222Z",
"dateReserved": "2026-03-23T06:04:48.670Z",
"dateUpdated": "2026-04-10T04:13:59.147Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2026-4621",
"date": "2026-04-20",
"epss": "0.00058",
"percentile": "0.17931"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2026-4621\",\"sourceIdentifier\":\"psirt-info@cyber.jp.nec.com\",\"published\":\"2026-03-27T12:16:20.910\",\"lastModified\":\"2026-04-20T15:20:06.500\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Hidden Functionality vulnerability in NEC Platforms, Ltd. Aterm Series allows a attacker to enable telnet via network.\"}],\"metrics\":{\"cvssMetricV40\":[{\"source\":\"psirt-info@cyber.jp.nec.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"4.0\",\"vectorString\":\"CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X\",\"baseScore\":6.3,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"attackRequirements\":\"NONE\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"vulnConfidentialityImpact\":\"LOW\",\"vulnIntegrityImpact\":\"LOW\",\"vulnAvailabilityImpact\":\"LOW\",\"subConfidentialityImpact\":\"NONE\",\"subIntegrityImpact\":\"NONE\",\"subAvailabilityImpact\":\"NONE\",\"exploitMaturity\":\"NOT_DEFINED\",\"confidentialityRequirement\":\"NOT_DEFINED\",\"integrityRequirement\":\"NOT_DEFINED\",\"availabilityRequirement\":\"NOT_DEFINED\",\"modifiedAttackVector\":\"NOT_DEFINED\",\"modifiedAttackComplexity\":\"NOT_DEFINED\",\"modifiedAttackRequirements\":\"NOT_DEFINED\",\"modifiedPrivilegesRequired\":\"NOT_DEFINED\",\"modifiedUserInteraction\":\"NOT_DEFINED\",\"modifiedVulnConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedVulnIntegrityImpact\":\"NOT_DEFINED\",\"modifiedVulnAvailabilityImpact\":\"NOT_DEFINED\",\"modifiedSubConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedSubIntegrityImpact\":\"NOT_DEFINED\",\"modifiedSubAvailabilityImpact\":\"NOT_DEFINED\",\"Safety\":\"NOT_DEFINED\",\"Automatable\":\"NOT_DEFINED\",\"Recovery\":\"NOT_DEFINED\",\"valueDensity\":\"NOT_DEFINED\",\"vulnerabilityResponseEffort\":\"NOT_DEFINED\",\"providerUrgency\":\"NOT_DEFINED\"}}],\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L\",\"baseScore\":5.6,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"LOW\"},\"exploitabilityScore\":2.2,\"impactScore\":3.4}]},\"weaknesses\":[{\"source\":\"psirt-info@cyber.jp.nec.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-912\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:nec:aterm_wg1200hp4_firmware:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"ABEF9893-7104-4EFB-8504-58F2B8CF95D4\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:nec:aterm_wg1200hp4:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5A89DF7B-F002-43C6-BD55-AD93A12522E5\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:nec:aterm_wg2600hs_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"1.7.2\",\"matchCriteriaId\":\"B9BC68AC-B83D-4E0B-9B8D-23477CE698B5\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:nec:aterm_wg2600hs:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"623C9C7B-C947-49A8-9C1D-20B23FDA73ED\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:nec:aterm_wf1200cr_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"1.6.0\",\"matchCriteriaId\":\"FE8EF43A-B179-4352-A9C9-09A13AEB63AC\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:nec:aterm_wf1200cr:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3A91D9EB-5962-498E-9B14-C5712DDDF7C2\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:nec:aterm_wg1200cr_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"1.5.0\",\"matchCriteriaId\":\"D1BD83BE-3C42-417E-838F-A5D6FB63443F\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:nec:aterm_wg1200cr:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"936D9DD3-11E5-4862-B157-85B13EA06C38\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:nec:aterm_wg2600hp4_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"1.4.2\",\"matchCriteriaId\":\"7E67DF3D-78B9-4B64-B3D1-B3A0B9951B83\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:nec:aterm_wg2600hp4:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2CA71E45-3623-423D-A1E7-FA7617A22EBD\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:nec:aterm_wg2600hm4_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"1.4.2\",\"matchCriteriaId\":\"8631153A-E9AE-4288-B1BD-B035CF51063C\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:nec:aterm_wg2600hm4:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"20D6198A-B5F8-4E5E-94AE-0C657EBAB137\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:nec:aterm_wg2600hs2_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"1.3.2\",\"matchCriteriaId\":\"B3D92216-F37F-49DE-978E-CB9A657D3FE7\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:nec:aterm_wg2600hs2:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EA952A10-D2C7-4155-B805-B5DE9CFA5B96\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:nec:aterm_wx3000hp_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2.5.0\",\"matchCriteriaId\":\"B4C5E53E-B37C-4FA6-BE0E-F78C168A7E8C\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:nec:aterm_wx3000hp:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4F34C11C-91C8-4DE6-B170-06C857E9E3F3\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:nec:aterm_wx3600hp_firmware:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"1.5.3\",\"matchCriteriaId\":\"555D2A1F-56A2-48E3-A046-FBF1EAF865B6\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:nec:aterm_wx3600hp:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"49BA8EF7-AE6D-4E69-A14B-410127D41E01\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:nec:aterm_w1200ex-ms_firmware:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EAFDE7A7-2355-434E-929A-E50B0BD5F584\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:nec:aterm_w1200ex-ms:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"29756D80-6095-4CCA-9436-FA61503B2E47\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:nec:aterm_wg1200hp2_firmware:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4C68B7B4-AA6C-4222-BDC4-AF1E442B248A\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:nec:aterm_wg1200hp2:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"90D0B0AE-064D-4E48-9155-47ECDFBAAE26\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:nec:aterm_wg1900hp_firmware:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B0826424-1B25-44AD-A60D-7B62C1148B1C\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:nec:aterm_wg1900hp:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1EE892DF-9165-4ED3-B5F4-B3232BC7B07A\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:nec:aterm_wg1200hs2_firmware:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DD777679-3495-4BDE-923C-5196FB8D2788\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:nec:aterm_wg1200hs2:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"65C2F75B-CA40-4795-ABD4-2101A1DF1EDA\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:nec:aterm_wg1800hp3_firmware:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BFF80998-6400-48F3-A990-D5B87C665D34\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:nec:aterm_wg1800hp3:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"87EF7C61-A13A-4EF8-8034-90D7E2AD3A86\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:nec:aterm_wg1200hp3_firmware:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8BB35FC8-62FF-4A6D-AB97-883FCEE8307B\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:nec:aterm_wg1200hp3:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FB299D6D-056F-4F75-AD19-81F11C79CA08\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:nec:aterm_wg1900hp2_firmware:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5E2AB180-F2E1-47F9-BBB1-A2D94325DEDC\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:nec:aterm_wg1900hp2:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"189508FB-75EC-49CE-A6F5-3E4A8F3E57E7\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:nec:aterm_wg1200hs3_firmware:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"644FC7C2-94C6-48DF-B487-2F97FF752CAB\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:nec:aterm_wg1200hs3:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0BE6AFC0-F46F-491F-88E0-5EB17420F5EE\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:nec:aterm_wg1800hp4_firmware:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"64691C9F-576D-416E-A6B0-042FEE21DD06\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:nec:aterm_wg1800hp4:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D9130B16-D277-4335-8FBF-83715094FA70\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:nec:aterm_wg1200hs4_firmware:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E9E29E36-6D47-4CD4-BEDB-7F480FBF2834\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:nec:aterm_wg1200hs4:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F4840DCB-8E32-4989-A89E-BA787CE4B3F9\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:nec:aterm_wx1500hp_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"1.4.2\",\"matchCriteriaId\":\"2724C104-05C2-4907-A2DE-E6E3D3BC1E8F\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:nec:aterm_wx1500hp:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1326D2EC-FF31-45A7-8DCE-1371DA0FD779\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:nec:aterm_wx3000hp2_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"1.3.2\",\"matchCriteriaId\":\"DC5AF3B6-76AD-4E18-8427-61D0D8260AD1\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:nec:aterm_wx3000hp2:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A2D80835-26A0-48E9-AF95-76F06ADB21EF\"}]}]}],\"references\":[{\"url\":\"https://jpn.nec.com/security-info/secinfo/nv26-001_en.html\",\"source\":\"psirt-info@cyber.jp.nec.com\",\"tags\":[\"Vendor Advisory\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2026-4621\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2026-03-27T12:57:21.304368Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2026-03-27T12:57:28.056Z\"}}], \"cna\": {\"source\": {\"discovery\": \"EXTERNAL\"}, \"credits\": [{\"lang\": \"en\", \"type\": \"reporter\", \"user\": \"00000000-0000-4000-9000-000000000000\", \"value\": \"Chuya Hayakawa of Zero Zero One Co., Ltd.\"}], \"metrics\": [{\"format\": \"CVSS\", \"cvssV4_0\": {\"Safety\": \"NOT_DEFINED\", \"version\": \"4.0\", \"Recovery\": \"NOT_DEFINED\", \"baseScore\": 6.3, \"Automatable\": \"NOT_DEFINED\", \"attackVector\": \"NETWORK\", \"baseSeverity\": \"MEDIUM\", \"valueDensity\": \"NOT_DEFINED\", \"vectorString\": \"CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N\", \"exploitMaturity\": \"NOT_DEFINED\", \"providerUrgency\": \"NOT_DEFINED\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"HIGH\", \"attackRequirements\": \"NONE\", \"privilegesRequired\": \"NONE\", \"subIntegrityImpact\": \"NONE\", \"vulnIntegrityImpact\": \"LOW\", \"subAvailabilityImpact\": \"NONE\", \"vulnAvailabilityImpact\": \"LOW\", \"subConfidentialityImpact\": \"NONE\", \"vulnConfidentialityImpact\": \"LOW\", \"vulnerabilityResponseEffort\": \"NOT_DEFINED\"}, \"scenarios\": [{\"lang\": \"en\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"vendor\": \"NEC Platforms, Ltd.\", \"product\": \"Aterm W1200EX(-MS)\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"NEC Platforms, Ltd.\", \"product\": \"Aterm WG1200HP2\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"NEC Platforms, Ltd.\", \"product\": \"Aterm WG1900HP\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"NEC Platforms, Ltd.\", \"product\": \"Aterm WG1200HS2\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"NEC Platforms, Ltd.\", \"product\": \"Aterm WG1800HP3\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"NEC Platforms, Ltd.\", \"product\": \"Aterm WG1200HP3\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"NEC Platforms, Ltd.\", \"product\": \"Aterm WG1900HP2\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"NEC Platforms, Ltd.\", \"product\": \"Aterm WG1200HS3\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"NEC Platforms, Ltd.\", \"product\": \"Aterm WG1800HP4\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"NEC Platforms, Ltd.\", \"product\": \"Aterm WG1200HP4\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"NEC Platforms, Ltd.\", \"product\": \"Aterm WG1200HS4\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"NEC Platforms, Ltd.\", \"product\": \"Aterm WX1500HP\", \"versions\": [{\"status\": \"affected\", \"version\": \"Before Ver. 1.4.2\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"NEC Platforms, Ltd.\", \"product\": \"Aterm WG2600HS\", \"versions\": [{\"status\": \"affected\", \"version\": \"Before Ver. 1.7.2\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"NEC Platforms, Ltd.\", \"product\": \"Aterm WF1200CR\", \"versions\": [{\"status\": \"affected\", \"version\": \"Before Ver. 1.6.0\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"NEC Platforms, Ltd.\", \"product\": \"Aterm WG1200CR\", \"versions\": [{\"status\": \"affected\", \"version\": \"Before Ver. 1.5.0\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"NEC Platforms, Ltd.\", \"product\": \"Aterm WG2600HP4\", \"versions\": [{\"status\": \"affected\", \"version\": \"Before Ver. 1.4.2\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"NEC Platforms, Ltd.\", \"product\": \"Aterm WG2600HM4\", \"versions\": [{\"status\": \"affected\", \"version\": \"Before Ver. 1.4.2\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"NEC Platforms, Ltd.\", \"product\": \"Aterm WG2600HS2\", \"versions\": [{\"status\": \"affected\", \"version\": \"Before Ver. 1.3.2\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"NEC Platforms, Ltd.\", \"product\": \"Aterm WX3000HP\", \"versions\": [{\"status\": \"affected\", \"version\": \"Before Ver. 2.5.0\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"NEC Platforms, Ltd.\", \"product\": \"Aterm WX3000HP2\", \"versions\": [{\"status\": \"affected\", \"version\": \"Before Ver. 1.3.2\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"NEC Platforms, Ltd.\", \"product\": \"Aterm WX3600HP\", \"versions\": [{\"status\": \"affected\", \"version\": \"Before Ver. 1.4.2\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"NEC Platforms, Ltd.\", \"product\": \"Aterm GX1200HP\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"NEC Platforms, Ltd.\", \"product\": \"Aterm GX1200HS4\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"NEC Platforms, Ltd.\", \"product\": \"Aterm WG1200DM4\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"NEC Platforms, Ltd.\", \"product\": \"Aterm GB1200PE\", \"versions\": [{\"status\": \"affected\", \"version\": \"Before Ver. 1.3.1\"}], \"defaultStatus\": \"unknown\"}], \"references\": [{\"url\": \"https://jpn.nec.com/security-info/secinfo/nv26-001_en.html\"}], \"x_generator\": {\"engine\": \"Vulnogram 0.2.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"Hidden Functionality vulnerability in NEC Platforms, Ltd. Aterm Series allows a attacker to enable telnet via network.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"Hidden Functionality vulnerability in NEC Platforms, Ltd. Aterm Series allows a attacker to enable telnet via network.\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-912\", \"description\": \"CWE-912: Hidden Functionality\"}]}], \"providerMetadata\": {\"orgId\": \"f2760a35-e0d8-4637-ac4c-cc1a2de3e282\", \"shortName\": \"NEC\", \"dateUpdated\": \"2026-04-10T04:13:59.147Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2026-4621\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-04-10T04:13:59.147Z\", \"dateReserved\": \"2026-03-23T06:04:48.670Z\", \"assignerOrgId\": \"f2760a35-e0d8-4637-ac4c-cc1a2de3e282\", \"datePublished\": \"2026-03-27T11:52:48.222Z\", \"assignerShortName\": \"NEC\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…