CVE-2026-4622 – NEC Aterm Series OS Command Injection Vulnerability

Vulnerability

An OS command injection vulnerability has been identified in the NEC Aterm Series. This vulnerability allows an attacker to execute arbitrary operating system commands over the network. It affects multiple models within the Aterm Series, all versions.

Impact

Exploitation of this vulnerability could lead to unauthorized execution of operating system commands on the affected device.

Remediation

The remediation process varies by model. Users should refer to the NEC Aterm support pages for their specific model for guidance.

Added: Mar 27, 2026, 12:19 PM

Updated: Mar 27, 2026, 12:19 PM

Affected Products

NEC Aterm W1200EX

Moderate fix1 remedy

cpe:2.3:h:nec:aterm_w1200ex:*:*:*:*:*:*:*, +3 more

Moderate fix1 remedy

<= 1.4.2

NEC Aterm WG1200HP2

Moderate fix1 remedy

cpe:2.3:h:nec:aterm_wg1200hp:*:*:*:*:*:*:*, +3 more

Moderate fix1 remedy

<= 1.4.2

NEC Aterm WG1900HP

Moderate fix1 remedy

cpe:2.3:h:nec:aterm_wg1900hp:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

<= 1.4.2

NEC Aterm WG1200HS2

Moderate fix1 remedy

cpe:2.3:h:nec:aterm_wg1200hs:*:*:*:*:*:*:*, +3 more

Moderate fix1 remedy

<= 1.4.2

NEC Aterm WG1800HP3

Moderate fix1 remedy

cpe:2.3:h:nec:aterm_wg1800hp3:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

<= 1.4.2

NEC Aterm WG1200HS3

Moderate fix1 remedy

cpe:2.3:h:nec:aterm_wg1200hs3:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

<= 1.4.2

NEC Aterm WG1800HP4

Moderate fix1 remedy

cpe:2.3:h:nec:aterm_wg1800hp4:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

<= 1.4.2

NEC Aterm WG1200HP4

Moderate fix1 remedy

<= 1.4.2

NEC Aterm WG2600HS

Moderate fix1 remedy

cpe:2.3:h:nec:aterm_wg2600hs:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

<= 1.4.2

NEC Aterm WG1200CR

Moderate fix1 remedy

cpe:2.3:h:nec:aterm_wg1200cr:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

<= 1.4.2

NEC Aterm WG2600HP4

0 remedies

cpe:2.3:h:nec:aterm_wg2600hp:*:*:*:*:*:*:*, +3 more

0 remedies

NEC Aterm WX3000HP

Moderate fix1 remedy

cpe:2.3:h:nec:aterm_wx3000hp:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

<= 1.4.2

CVSS Scores

volerion

9.3

CVSS 4.0

9.3

Critical

volerion

9.8

CVSS 3.1

9.8

Critical

nvd@nist.gov

9.8

CVSS 3.1

9.8

Critical

Vendor

7.1

CVSS 4.0

7.1

High

Click a row to open the calculator.

References

https://jpn.nec.com/security-info/secinfo/nv26-001_en.html

AdvisoryBundleRemedyVendor

Showing 1-1 of 1 references

NEC Aterm Series OS Command Injection Vulnerability

Vulnerability

Impact

Remediation

Affected Products

NEC Aterm W1200EX

NEC Aterm WG1200HP2

NEC Aterm WG1900HP

NEC Aterm WG1200HS2

NEC Aterm WG1800HP3

NEC Aterm WG1200HS3

NEC Aterm WG1800HP4

NEC Aterm WG1200HP4

NEC Aterm WG2600HS

NEC Aterm WG1200CR

NEC Aterm WG2600HP4

NEC Aterm WX3000HP

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating