Open redirect vulnerability in ELECOM wireless LAN routers and ELECOM wireless LAN repeaters allows a remote unauthenticated attacker to redirect users to arbitrary web sites and conduct phishing attacks via a specially crafted URL. Affected products and versions are as follows: WRH-300WH-H v2.12 and earlier, WTC-300HWH v1.09 and earlier, WTC-C1167GC-B v1.17 and earlier, and WTC-C1167GC-W v1.17 and earlier.
[
{
"vendor": "ELECOM CO.,LTD.",
"product": "WRH-300WH-H",
"versions": [
{
"version": "v2.12 and earlier",
"status": "affected"
}
]
},
{
"vendor": "ELECOM CO.,LTD.",
"product": "WTC-300HWH",
"versions": [
{
"version": "v1.09 and earlier",
"status": "affected"
}
]
},
{
"vendor": "ELECOM CO.,LTD.",
"product": "WTC-C1167GC-B",
"versions": [
{
"version": "v1.17 and earlier",
"status": "affected"
}
]
},
{
"vendor": "ELECOM CO.,LTD.",
"product": "WTC-C1167GC-W",
"versions": [
{
"version": "v1.17 and earlier",
"status": "affected"
}
]
}
]