CVE-2024-21798
- EPSS 0.39%
- Veröffentlicht 28.02.2024 23:15:09
- Zuletzt bearbeitet 14.02.2025 15:32:23
ELECOM wireless LAN routers contain a cross-site scripting vulnerability. Assume that a malicious administrative user configures the affected product with specially crafted content. When another administrative user logs in and operates the product, a...
CVE-2024-23910
- EPSS 0.21%
- Veröffentlicht 28.02.2024 23:15:09
- Zuletzt bearbeitet 22.04.2025 16:15:43
Cross-site request forgery (CSRF) vulnerability in ELECOM wireless LAN routers and wireless LAN repeater allows a remote unauthenticated attacker to hijack the authentication of administrators and to perform unintended operations to the affected prod...
CVE-2024-25579
- EPSS 0.04%
- Veröffentlicht 28.02.2024 23:15:09
- Zuletzt bearbeitet 26.11.2024 08:15:04
OS command injection vulnerability in ELECOM wireless LAN routers allows a network-adjacent attacker with an administrative privilege to execute arbitrary OS commands by sending a specially crafted request to the product. Note that WMC-X1800GST-B is ...
CVE-2022-25915
- EPSS 0.16%
- Veröffentlicht 31.03.2022 09:15:11
- Zuletzt bearbeitet 21.11.2024 06:53:12
Improper access control vulnerability in ELECOM LAN routers (WRC-1167GST2 firmware v1.25 and prior, WRC-1167GST2A firmware v1.25 and prior, WRC-1167GST2H firmware v1.25 and prior, WRC-2533GS2-B firmware v1.52 and prior, WRC-2533GS2-W firmware v1.52 a...