Severity by source
CVSS:4.0/AV:N/AC:H/AT:N/PR:H/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:4.0/AV:N/AC:H/AT:N/PR:H/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Lifecycle Timeline
4DescriptionCVE.org
OS Command Injection vulnerability in NEC Platforms, Ltd. Aterm Series allows a attacker to execute arbitrary OS commands via network.
AnalysisAI
OS command injection in NEC Platforms Aterm wireless router series (models WX1500HP and WX3600HP) permits authenticated network attackers with high privileges to execute arbitrary operating system commands on affected devices. The vulnerability requires user interaction and high attack complexity (CVSS 4.0 score 7.1), with no public exploit identified at time of analysis. NEC Platforms has published a security advisory detailing the issue.
Technical ContextAI
This vulnerability affects NEC Platforms Aterm wireless access point/router products, specifically the WX1500HP and WX3600HP models (confirmed via CPE cpe:2.3:a:nec_platforms,_ltd.:aterm_wx1500hp and cpe:2.3:a:nec_platforms,_ltd.:aterm_wx3600hp). The root cause is CWE-78 (OS Command Injection), a vulnerability class where unsanitized user input is passed to system shell commands. In enterprise networking equipment like these Aterm routers, command injection typically occurs through administrative web interfaces, CLI management, or configuration APIs where input validation fails to sanitize metacharacters before executing system-level operations. The CVSS 4.0 vector indicates network-based exploitation requiring high privileges (PR:H) and user interaction (UI:A), suggesting the vulnerability likely exists in privileged administrative functions rather than unauthenticated interfaces.
RemediationAI
Consult the official NEC Platforms security advisory at https://jpn.nec.com/security-info/secinfo/nv26-001_en.html for firmware updates and specific remediation guidance for Aterm WX1500HP and WX3600HP models. The vendor advisory should specify patched firmware versions and upgrade procedures. Until patching is completed, implement compensating controls including restricting administrative interface access to trusted management networks only (not exposed to general user networks or internet), enforcing strong authentication for administrative accounts with multi-factor authentication where supported, auditing administrative access logs for suspicious command execution patterns, and reviewing privileged user accounts to ensure principle of least privilege. Organizations unable to patch immediately should consider isolating affected devices on dedicated management VLANs with strict firewall rules limiting access to authorized administrators only.
More in Aterm Wx1500Hp
View allNEC Aterm wireless router series (including WG1200HP2, WG1900HP, WG1800HP3, WG1200HP4, and nine other models) contain hi
NEC Aterm wireless router series (W1200Ex-MS, WG1200HP2, WG1900HP, WG1800HP3, WG1800HP4, WG1200HP3, WG1200HP4, WG1200HS2
Same weakness CWE-78 – OS Command Injection
View allSame technique Command Injection
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2026-16587