CVE-2026-6059_CVE-2026-6059

4.8 / 10

MEDIUM

CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:A/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N

Description

A cross-site scripting vulnerability exists in Aterm. Arbitrary scripts may be executed in the web browser of a user accessing the web management interface via adjacent network.

Basic Information

ID CVE-2026-6059

Source NEC

Published May 25, 2026 at 02:22

Modified May 25, 2026 at 02:41

Affected Product

Vendor NEC Platforms, Ltd.

Product Aterm WX1800HP

Version Before Ver. 3.2.2

Affected Versions NEC Platforms, Ltd. Aterm WX1800HP Before Ver. 3.2.2
NEC Platforms, Ltd. Aterm WX5400HP Before Ver. 2.1.0
NEC Platforms, Ltd. Aterm WX7800T8 Before Ver. 1.5.1
NEC Platforms, Ltd. Aterm WX11000T12 Before Ver. 1.4.0
NEC Platforms, Ltd. Aterm WX3000HP2 Before Ver. 1.3.2
NEC Platforms, Ltd. Aterm WX4200D5 Before Ver. 1.3.5
NEC Platforms, Ltd. Aterm GX621A1 Before Ver. 3.2.2
NEC Platforms, Ltd. Aterm SH621A1 Before Ver. 3.2.2
NEC Platforms, Ltd. Aterm 19000T12BE Before Ver. 1.1.0

CWE Classification

CWE-79

References

jpn.nec.com /security-info/secinfo/nv26-002_en.html

{
    "lastseen": "",
    "description": "A cross-site scripting vulnerability exists in Aterm. Arbitrary scripts may be executed in the web browser of a user accessing the web management interface via adjacent network.",
    "published": "2026-05-25T02:22:29.809Z",
    "modified": "2026-05-25T02:41:19.695Z",
    "type": "cve",
    "title": "CVE-2026-6059",
    "source": "NEC",
    "references": "https://jpn.nec.com/security-info/secinfo/nv26-002_en.html",
    "id": "CVE-2026-6059",
    "bulletinFamily": "",
    "cwe": [
        "CWE-79"
    ],
    "cvelist": null,
    "sourceData": "NEC Platforms, Ltd. Aterm WX1800HP Before Ver. 3.2.2\nNEC Platforms, Ltd. Aterm WX5400HP Before Ver. 2.1.0\nNEC Platforms, Ltd. Aterm WX7800T8 Before Ver. 1.5.1\nNEC Platforms, Ltd. Aterm WX11000T12 Before Ver. 1.4.0\nNEC Platforms, Ltd. Aterm WX3000HP2 Before Ver. 1.3.2\nNEC Platforms, Ltd. Aterm WX4200D5 Before Ver. 1.3.5\nNEC Platforms, Ltd. Aterm GX621A1 Before Ver. 3.2.2\nNEC Platforms, Ltd. Aterm SH621A1 Before Ver. 3.2.2\nNEC Platforms, Ltd. Aterm 19000T12BE Before Ver. 1.1.0",
    "sourceHref": "",
    "cvss": {
        "score": 4.8,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:A/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Aterm WX1800HP",
    "version": "Before Ver. 3.2.2",
    "vendor": "NEC Platforms, Ltd.",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}