cbcvebase.

Elecom Co Ltd Wrc-1467Ghbk-A vulnerabilities

5 known vulnerabilities affecting elecom_co_ltd/wrc-1467ghbk-a.

Total CVEs
5
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH2MEDIUM2

Vulnerabilities

Page 1 of 1
CVE-2023-37567P2CRITICALCVSS 9.8vall versions 2023-07-13
CVE-2023-37567 [CRITICAL] CWE-77 CVE-2023-37567: Command injection vulnerability in ELECOM and LOGITEC wireless LAN routers allows a remote unauthent Command injection vulnerability in ELECOM and LOGITEC wireless LAN routers allows a remote unauthenticated attacker to execute an arbitrary command by sending a specially crafted request to a certain port of the web management page. Affected products and versions are as follows: WRC-1167GHBK3-A v1.24 and earlier, WRC-F1167ACF2 all versions, WRC-600
nvd
CVE-2023-39455P2HIGHCVSS 8.8vall versions2023-08-18
CVE-2023-39455 [HIGH] CWE-78 CVE-2023-39455: OS command injection vulnerability in ELECOM wireless LAN routers allows an authenticated user to ex OS command injection vulnerability in ELECOM wireless LAN routers allows an authenticated user to execute an arbitrary OS command by sending a specially crafted request. Affected products and versions are as follows: WRC-600GHBK-A all versions, WRC-1467GHBK-A all versions, WRC-1900GHBK-A all versions, WRC-733FEBK2-A all versions, WRC-F1167ACF2 all vers
nvd
CVE-2023-37566P3HIGHCVSS 8.0vall versions 2023-07-13
CVE-2023-37566 [HIGH] CWE-77 CVE-2023-37566: Command injection vulnerability in ELECOM and LOGITEC wireless LAN routers allows a network-adjacent Command injection vulnerability in ELECOM and LOGITEC wireless LAN routers allows a network-adjacent authenticated attacker to execute an arbitrary command by sending a specially crafted request to the web management page. Affected products and versions are as follows: WRC-1167GHBK3-A v1.24 and earlier, WRC-1167FEBK-A v1.18 and earlier, WRC-F1167ACF2 a
nvd
CVE-2023-37563P4MEDIUMCVSS 6.5vall versions 2023-07-13
CVE-2023-37563 [MEDIUM] CWE-922 CVE-2023-37563: ELECOM wireless LAN routers are vulnerable to sensitive information exposure, which allows a network ELECOM wireless LAN routers are vulnerable to sensitive information exposure, which allows a network-adjacent unauthorized attacker to obtain sensitive information. Affected products and versions are as follows: WRC-1167GHBK-S v1.03 and earlier, WRC-1167GEBK-S v1.03 and earlier, WRC-1167FEBK-S v1.04 and earlier, WRC-1167GHBK3-A v1.24 and earlier, WR
nvd
CVE-2021-20644P4MEDIUMCVSS 6.1vWRC-1467GHBK-A2021-02-12
CVE-2021-20644 [MEDIUM] CWE-74 CVE-2021-20644: ELECOM WRC-1467GHBK-A allows arbitrary scripts to be executed on the user's web browser by displayin ELECOM WRC-1467GHBK-A allows arbitrary scripts to be executed on the user's web browser by displaying a specially crafted SSID on the web setup page.
nvd
Elecom Co Ltd Wrc-1467Ghbk-A vulnerabilities | cvebase