CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
24.8%
Multiple wireless LAN routers provided by ELECOM CO.,LTD. contain multiple vulnerabilities listed below.
Unrestricted Upload of File with Dangerous Type (CWE-434) CVSS:3.0/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H Base Score 6.8 CVE-2024-34021OS Command Injection (CWE-78)CVSS:3.0/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H Base Score 6.8 CVE-2024-39607Cross-Site Request Forgery (CWE-352) CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N Base Score 6.5 CVE-2024-40883
Update the firmware
Update the firmware to the latest version according to the information provided by the developer.
CVE-2024-34021
WRC-2533GS2V-B v1.68 and earlier
WRC-2533GS2-B v1.68 and earlier
WRC-2533GS2-W v1.68 and earlier
WRC-2533GST2 v1.30 and earlier
CVE-2024-39607, CVE-2024-40883
WRC-X6000XS-G v1.11 and earlier
WRC-X1500GS-B v1.11 and earlier
WRC-X1500GSA-B v1.11 and earlier
WRC-X3000GS2-B v1.08 and earlier
WRC-X3000GS2-W v1.08 and earlier
WRC-X3000GS2A-B v1.08 and earlier
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
24.8%