Primary

Context

NEC Aterm Products Missing Authentication Vulnerability Allowing Wi-Fi Password Retrieval

Vulnerability

A vulnerability allowing unauthorized access to critical functions has been identified in several NEC Aterm products, including the WG2600HS, WF1200CRS, WG1200CRS, GB1200PE, WG2600HP4, WG2600HM4, WG2600HS2, WX3000HP, and WX4200D5. In these affected versions, an attacker can retrieve the Wi-Fi password over the network.

Impact

Exploitation of this vulnerability allows for unauthorized retrieval of Wi-Fi passwords from the affected devices.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

2.5

exploitability

7.0

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

2.5

exploitability

7.0

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

NEC Aterm Products Missing Authentication Vulnerability Allowing Wi-Fi Password Retrieval

Vulnerability

Impact

Affected Products

NEC Aterm WG2600HS

NEC WG1200CRS

NEC WG2600HP4

NEC WG2600HM4

NEC WG2600HS2

NEC WX3000HP

NEC WX4200D5

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating