CVE-2024-26258
- EPSS 0.22%
- Veröffentlicht 04.04.2024 00:15:07
- Zuletzt bearbeitet 26.11.2024 08:15:04
OS command injection vulnerability in ELECOM wireless LAN routers allows a network-adjacent attacker with credentials to execute arbitrary OS commands by sending a specially crafted request to the product.
CVE-2024-25568
- EPSS 0.4%
- Veröffentlicht 04.04.2024 00:15:06
- Zuletzt bearbeitet 21.11.2024 09:01:00
OS command injection vulnerability in ELECOM wireless LAN routers allows a network-adjacent unauthenticated attacker to execute arbitrary OS commands by sending a specially crafted request to the product. Affected products and versions are as follows...
CVE-2024-21798
- EPSS 0.39%
- Veröffentlicht 28.02.2024 23:15:09
- Zuletzt bearbeitet 14.02.2025 15:32:23
ELECOM wireless LAN routers contain a cross-site scripting vulnerability. Assume that a malicious administrative user configures the affected product with specially crafted content. When another administrative user logs in and operates the product, a...
CVE-2024-23910
- EPSS 0.21%
- Veröffentlicht 28.02.2024 23:15:09
- Zuletzt bearbeitet 22.04.2025 16:15:43
Cross-site request forgery (CSRF) vulnerability in ELECOM wireless LAN routers and wireless LAN repeater allows a remote unauthenticated attacker to hijack the authentication of administrators and to perform unintended operations to the affected prod...
CVE-2024-25579
- EPSS 0.04%
- Veröffentlicht 28.02.2024 23:15:09
- Zuletzt bearbeitet 26.11.2024 08:15:04
OS command injection vulnerability in ELECOM wireless LAN routers allows a network-adjacent attacker with an administrative privilege to execute arbitrary OS commands by sending a specially crafted request to the product. Note that WMC-X1800GST-B is ...