Elecom Wrc-2533Gs2-B Firmware vulnerabilities
10 known vulnerabilities affecting elecom/wrc-2533gs2-b_firmware.
Total CVEs
10
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH8MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2021-20864P3HIGHCVSS 8.8≤ 1.522021-12-01
CVE-2021-20864 [HIGH] CVE-2021-20864: Improper access control vulnerability in ELECOM routers (WRC-1167GST2 firmware v1.25 and prior, WRC-
Improper access control vulnerability in ELECOM routers (WRC-1167GST2 firmware v1.25 and prior, WRC-1167GST2A firmware v1.25 and prior, WRC-1167GST2H firmware v1.25 and prior, WRC-2533GS2-B firmware v1.52 and prior, WRC-2533GS2-W firmware v1.52 and prior, WRC-1750GS firmware v1.03 and prior, WRC-1750GSV firmware v2.11 and prior, WRC-1900GST firmware v1.03 and
nvd
CVE-2021-20861P3HIGHCVSS 8.8≤ 1.522021-12-01
CVE-2021-20861 [HIGH] CVE-2021-20861: Improper access control vulnerability in ELECOM LAN routers (WRC-1167GST2 firmware v1.25 and prior,
Improper access control vulnerability in ELECOM LAN routers (WRC-1167GST2 firmware v1.25 and prior, WRC-1167GST2A firmware v1.25 and prior, WRC-1167GST2H firmware v1.25 and prior, WRC-2533GS2-B firmware v1.52 and prior, WRC-2533GS2-W firmware v1.52 and prior, WRC-1750GS firmware v1.03 and prior, WRC-1750GSV firmware v2.11 and prior, WRC-1900GST firmware v1.03
nvd
CVE-2022-25915P3HIGHCVSS 8.8≤ 1.522022-03-31
CVE-2022-25915 [HIGH] CVE-2022-25915: Improper access control vulnerability in ELECOM LAN routers (WRC-1167GST2 firmware v1.25 and prior,
Improper access control vulnerability in ELECOM LAN routers (WRC-1167GST2 firmware v1.25 and prior, WRC-1167GST2A firmware v1.25 and prior, WRC-1167GST2H firmware v1.25 and prior, WRC-2533GS2-B firmware v1.52 and prior, WRC-2533GS2-W firmware v1.52 and prior, WRC-1750GS firmware v1.03 and prior, WRC-1750GSV firmware v2.11 and prior, WRC-1900GST firmware v1.03
nvd
CVE-2024-23910P3HIGHCVSS 8.8fixed in 1.682024-02-28
CVE-2024-23910 [HIGH] CWE-352 CVE-2024-23910: Cross-site request forgery (CSRF) vulnerability in ELECOM wireless LAN routers and wireless LAN repe
Cross-site request forgery (CSRF) vulnerability in ELECOM wireless LAN routers and wireless LAN repeater allows a remote unauthenticated attacker to hijack the authentication of administrators and to perform unintended operations to the affected product. Note that WMC-X1800GST-B and WSC-X1800GS-B are also included in e-Mesh Starter Kit "WMC-2LX-B".
nvd
CVE-2021-20863P3HIGHCVSS 8.0≤ 1.522021-12-01
CVE-2021-20863 [HIGH] CWE-78 CVE-2021-20863: OS command injection vulnerability in ELECOM routers (WRC-1167GST2 firmware v1.25 and prior, WRC-116
OS command injection vulnerability in ELECOM routers (WRC-1167GST2 firmware v1.25 and prior, WRC-1167GST2A firmware v1.25 and prior, WRC-1167GST2H firmware v1.25 and prior, WRC-2533GS2-B firmware v1.52 and prior, WRC-2533GS2-W firmware v1.52 and prior, WRC-1750GS firmware v1.03 and prior, WRC-1750GSV firmware v2.11 and prior, WRC-1900GST firmware v1.03
nvd
CVE-2021-20859P3HIGHCVSS 8.0≤ 1.522021-12-01
CVE-2021-20859 [HIGH] CWE-78 CVE-2021-20859: ELECOM LAN routers (WRC-1167GST2 firmware v1.25 and prior, WRC-1167GST2A firmware v1.25 and prior, W
ELECOM LAN routers (WRC-1167GST2 firmware v1.25 and prior, WRC-1167GST2A firmware v1.25 and prior, WRC-1167GST2H firmware v1.25 and prior, WRC-2533GS2-B firmware v1.52 and prior, WRC-2533GS2-W firmware v1.52 and prior, WRC-1750GS firmware v1.03 and prior, WRC-1750GSV firmware v2.11 and prior, WRC-1900GST firmware v1.03 and prior, WRC-2533GST firmware v
nvd
CVE-2021-20860P3HIGHCVSS 8.8≤ 1.522021-12-01
CVE-2021-20860 [HIGH] CWE-352 CVE-2021-20860: Cross-site request forgery (CSRF) vulnerability in ELECOM LAN routers (WRC-1167GST2 firmware v1.25 a
Cross-site request forgery (CSRF) vulnerability in ELECOM LAN routers (WRC-1167GST2 firmware v1.25 and prior, WRC-1167GST2A firmware v1.25 and prior, WRC-1167GST2H firmware v1.25 and prior, WRC-2533GS2-B firmware v1.52 and prior, WRC-2533GS2-W firmware v1.52 and prior, WRC-1750GS firmware v1.03 and prior, WRC-1750GSV firmware v2.11 and prior, WRC-1900
nvd
CVE-2024-40883P3HIGHCVSS 8.8fixed in 1.692024-08-01
CVE-2024-40883 [HIGH] CWE-352 CVE-2024-40883: Cross-site request forgery vulnerability exists in ELECOM wireless LAN routers. Viewing a malicious
Cross-site request forgery vulnerability exists in ELECOM wireless LAN routers. Viewing a malicious page while logging in to the affected product with an administrative privilege, the user may be directed to perform unintended operations such as changing the login ID, login password, etc.
nvd
CVE-2024-21798P4MEDIUMCVSS 4.8fixed in 1.682024-02-28
CVE-2024-21798 [MEDIUM] CWE-79 CVE-2024-21798: ELECOM wireless LAN routers contain a cross-site scripting vulnerability. Assume that a malicious ad
ELECOM wireless LAN routers contain a cross-site scripting vulnerability. Assume that a malicious administrative user configures the affected product with specially crafted content. When another administrative user logs in and operates the product, an arbitrary script may be executed on the web browser. Note that WMC-X1800GST-B is also included in e-
nvd
CVE-2021-20862P4MEDIUMCVSS 4.3≤ 1.522021-12-01
CVE-2021-20862 [MEDIUM] CVE-2021-20862: Improper access control vulnerability in ELECOM routers (WRC-1167GST2 firmware v1.25 and prior, WRC-
Improper access control vulnerability in ELECOM routers (WRC-1167GST2 firmware v1.25 and prior, WRC-1167GST2A firmware v1.25 and prior, WRC-1167GST2H firmware v1.25 and prior, WRC-2533GS2-B firmware v1.52 and prior, WRC-2533GS2-W firmware v1.52 and prior, WRC-1750GS firmware v1.03 and prior, WRC-1750GSV firmware v2.11 and prior, WRC-1900GST firmware v1.03 a
nvd