Lucene search
JpcertCVELIST:CVE-2024-40883HistoryAug 01, 2024 - 1:18 a.m.
CVE-2024-40883
2024-08-0101:18:01
jpcert
www.cve.org
3
cve-2024-40883
cross-site request forgery
elecom wireless lan routers
administrative privilege
unintended operations
security vulnerability
EPSS
0.001
Percentile
24.8%
Cross-site request forgery vulnerability exists in ELECOM wireless LAN routers. Viewing a malicious page while logging in to the affected product with an administrative privilege, the user may be directed to perform unintended operations such as changing the login ID, login password, etc.
CNA Affected
[
{
"vendor": "ELECOM CO.,LTD.",
"product": "WRC-X6000XS-G",
"versions": [
{
"version": "v1.11 and earlier",
"status": "affected"
}
]
},
{
"vendor": "ELECOM CO.,LTD.",
"product": "WRC-X1500GS-B",
"versions": [
{
"version": "v1.11 and earlier",
"status": "affected"
}
]
},
{
"vendor": "ELECOM CO.,LTD.",
"product": "WRC-X1500GSA-B",
"versions": [
{
"version": "v1.11 and earlier",
"status": "affected"
}
]
},
{
"vendor": "ELECOM CO.,LTD.",
"product": "WRC-X3000GS2-B",
"versions": [
{
"version": "v1.08 and earlier",
"status": "affected"
}
]
},
{
"vendor": "ELECOM CO.,LTD.",
"product": "WRC-X3000GS2-W",
"versions": [
{
"version": "v1.08 and earlier",
"status": "affected"
}
]
},
{
"vendor": "ELECOM CO.,LTD.",
"product": "WRC-X3000GS2A-B",
"versions": [
{
"version": "v1.08 and earlier",
"status": "affected"
}
]
}
]Related
vulnrichment
vulnrichment
CVE-2024-40883
2024-08-01 01:18:01
cve
cve
CVE-2024-40883
2024-08-01 02:15:02
nvd
nvd
CVE-2024-40883
2024-08-01 02:15:02
jvn
jvn
JVN#06672778: Multiple vulnerabilities in ELECOM wireless LAN routers
2024-07-30 00:00:00