Elecom Co Ltd Wrc-X3000Gs vulnerabilities
2 known vulnerabilities affecting elecom_co_ltd/wrc-x3000gs.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2025-41427P2HIGHCVSS 8.7vv1.0.34 and earlier2025-06-24
CVE-2025-41427 [HIGH] CWE-78 CVE-2025-41427: WRC-X3000GS, WRC-X3000GSA, and WRC-X3000GSN contain an improper neutralization of special elements u
WRC-X3000GS, WRC-X3000GSA, and WRC-X3000GSN contain an improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability in Connection Diagnostics page. If a remote authenticated attacker sends a specially crafted request to the affected product, an arbitrary OS command may be executed.
nvd
CVE-2023-49695P3MEDIUMCVSS 6.8vv1.0.24 and earlier2023-12-12
CVE-2023-49695 [MEDIUM] CWE-78 CVE-2023-49695: OS command injection vulnerability in WRC-X3000GSN v1.0.2, WRC-X3000GS v1.0.24 and earlier, and WRC-
OS command injection vulnerability in WRC-X3000GSN v1.0.2, WRC-X3000GS v1.0.24 and earlier, and WRC-X3000GSA v1.0.24 and earlier allows a network-adjacent attacker with an administrative privilege to execute an arbitrary OS command by sending a specially crafted request to the product.
nvd