CVE-2018-0613
HIGHNEC Platforms Calsos CSDX and CSDJ Firmware - Authenticated Privilege Escalation
Title source: llmDescription
NEC Platforms Calsos CSDX and CSDJ series products (CSDX 1.37210411 and earlier, CSDX(P) 4.37210411 and earlier, CSDX(D) 3.37210411 and earlier, CSDX(S) 2.37210411 and earlier, CSDJ-B 01.03.00 and earlier, CSDJ-H 01.03.00 and earlier, CSDJ-D 01.03.00 and earlier, CSDJ-A 03.00.00) allows remote authenticated attackers to bypass access restriction to conduct arbitrary operations with administrative privilege via unspecified vectors.
References (2)
Core 2
Core References
Vendor Advisory x_refsource_confirm
https://www.necplatforms.co.jp/product/enkaku/info180702.html
Third Party Advisory third-party-advisory
x_refsource_jvn
http://jvn.jp/en/jp/JVN63895206/index.html
Scores
CVSS v3
8.8
EPSS
0.0108
EPSS Percentile
60.8%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-269
Status
published
Products (8)
necplatforms/calsos_csdj-a_firmware
< 03.00.00
necplatforms/calsos_csdj-b_firmware
< 01.03.00
necplatforms/calsos_csdj-d_firmware
< 01.03.00
necplatforms/calsos_csdj-h_firmware
< 01.03.00
necplatforms/calsos_csdx\(d\)_firmware
< 3.37210411
necplatforms/calsos_csdx\(p\)_firmware
< 4.37210411
necplatforms/calsos_csdx\(s\)_firmware
< 2.37210411
necplatforms/calsos_csdx_firmware
< 1.37210411
Published
Jul 26, 2018
Tracked Since
Feb 18, 2026