{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-21T02:41:10.201","vulnerabilities":[{"cve":{"id":"CVE-2024-11013","sourceIdentifier":"psirt-info@cyber.jp.nec.com","published":"2024-11-29T08:15:03.923","lastModified":"2026-04-15T00:35:42.020","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Command Injection vulnerability in NEC Corporation UNIVERGE IX from Ver9.2 to Ver10.10.21, for Ver10.8 up to Ver10.8.27, for Ver10.9 up to Ver10.9.14 and UNIVERGE IX-R/IX-V Ver1.2.15 and earlier allows a attacker to inject an arbitrary CLI commands to be executed on the device via the management interface."},{"lang":"es","value":"La vulnerabilidad de inyección de comandos en NEC Corporation UNIVERGE IX desde Ver9.2 hasta Ver10.10.21, desde Ver10.8 hasta Ver10.8.27, desde Ver10.9 hasta Ver10.9.14 y UNIVERGE IX-R/IX-V Ver1.2.15 y anteriores permite a un atacante inyectar comandos CLI arbitrarios para que se ejecuten en el dispositivo a través de la interfaz de administración."}],"metrics":{"cvssMetricV31":[{"source":"psirt-info@cyber.jp.nec.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H","baseScore":7.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.2,"impactScore":5.9}]},"weaknesses":[{"source":"psirt-info@cyber.jp.nec.com","type":"Secondary","description":[{"lang":"en","value":"CWE-77"}]}],"references":[{"url":"https://jpn.nec.com/security-info/secinfo/nv24-009_en.html","source":"psirt-info@cyber.jp.nec.com"}]}}]}