Lucene search
HistoryAug 01, 2024 - 2:15 a.m.
CVE-2024-34021
elecom
wireless lan routers
file upload
vulnerability
os command execution
CVSS3
6.8
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
EPSS
0
Percentile
9.4%
Unrestricted upload of file with dangerous type vulnerability exists in ELECOM wireless LAN routers. A specially crafted file may be uploaded to the affected product by a logged-in user with an administrative privilege, resulting in an arbitrary OS command execution.
Related
vulnrichment
vulnrichment
CVE-2024-34021
2024-08-01 01:15:56
cve
cve
CVE-2024-34021
2024-08-01 02:15:01
cvelist
cvelist
CVE-2024-34021
2024-08-01 01:15:56
jvn
jvn
JVN#06672778: Multiple vulnerabilities in ELECOM wireless LAN routers
2024-07-30 00:00:00
CVSS3
6.8
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
EPSS
0
Percentile
9.4%
Related for NVD:CVE-2024-34021