Unrestricted upload of file with dangerous type vulnerability exists in ELECOM wireless LAN routers. A specially crafted file may be uploaded to the affected product by a logged-in user with an administrative privilege, resulting in an arbitrary OS command execution.
[
{
"vendor": "ELECOM CO.,LTD.",
"product": "WRC-2533GS2V-B",
"versions": [
{
"version": "v1.68 and earlier",
"status": "affected"
}
]
},
{
"vendor": "ELECOM CO.,LTD.",
"product": "WRC-2533GS2-B",
"versions": [
{
"version": "v1.68 and earlier",
"status": "affected"
}
]
},
{
"vendor": "ELECOM CO.,LTD.",
"product": "WRC-2533GS2-W",
"versions": [
{
"version": "v1.68 and earlier",
"status": "affected"
}
]
},
{
"vendor": "ELECOM CO.,LTD.",
"product": "WRC-2533GST2",
"versions": [
{
"version": "v1.30 and earlier",
"status": "affected"
}
]
}
]