CVE-2026-42950

🗓️ 13 May 2026 12:02:12Reported by jpcertType

CVE-2026-42950: ELECOM wireless LAN access points fail to validate language parameter, breaking the admin page when a malicious page is viewed.

Reporter	Title	Published	Views	Family All 10
ATTACKERKB	CVE-2026-42950	13 May 202612:02	–	attackerkb
Circl	CVE-2026-42950	11 May 202622:00	–	circl
CNNVD	ELECOM WAB 代码问题漏洞	13 May 202600:00	–	cnnvd
CVE	CVE-2026-42950	13 May 202612:02	–	cve
EUVD	EUVD-2026-29943	13 May 202618:30	–	euvd
Japan Vulnerability Notes	Multiple vulnerabilities in ELECOM wireless LAN routers and access points (May 2026)	12 May 202606:16	–	jvn
NVD	CVE-2026-42950	13 May 202613:16	–	nvd
Positive Technologies	PT-2026-40600	13 May 202600:00	–	ptsecurity
RedhatCVE	CVE-2026-42950	5 Jun 202619:30	–	redhatcve
Vulnrichment	CVE-2026-42950	13 May 202612:02	–	vulnrichment

[
  {
    "vendor": "ELECOM CO.,LTD.",
    "product": "WAB-BE187-M",
    "versions": [
      {
        "version": "v1.1.10 and earlier",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "ELECOM CO.,LTD.",
    "product": "WAB-BE72-M",
    "versions": [
      {
        "version": "v1.1.3 and earlier",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "ELECOM CO.,LTD.",
    "product": "WAB-BE36-M",
    "versions": [
      {
        "version": "v1.1.3 and earlier",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "ELECOM CO.,LTD.",
    "product": "WAB-BE36-S",
    "versions": [
      {
        "version": "v1.1.3 and earlier",
        "status": "affected"
      }
    ]
  }
]

Source	Link
jvn	www.jvn.jp/en/jp/JVN03037325/
elecom	www.elecom.co.jp/news/security/20260512-01/

13 May 2026 12:02Current

CVSS 34.3

CVSS 45.1

EPSS0.00039

CWE-754