Lucene search

PRIOn knowledge basePRION:CVE-2023-37561

HistoryJul 13, 2023 - 2:15 a.m.

Open redirect

2023-07-1302:15:00

PRIOn knowledge base

www.prio-n.com

elecom routers

open redirect

phishing

wireless lan

vulnerability

remote attacker

6.8 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

29.9%

JSON

Open redirect vulnerability in ELECOM wireless LAN routers and ELECOM wireless LAN repeaters allows a remote unauthenticated attacker to redirect users to arbitrary web sites and conduct phishing attacks via a specially crafted URL. Affected products and versions are as follows: WRH-300WH-H v2.12 and earlier, WTC-300HWH v1.09 and earlier, WTC-C1167GC-B v1.17 and earlier, and WTC-C1167GC-W v1.17 and earlier.

CPENameOperatorVersion
wrh-300wh-h_firmwarele2.12
wtc-300hwh_firmwarele1.09
wtc-c1167gc-b_firmwarele1.17
wtc-c1167gc-w_firmwarele1.17

Name	Operator	Version
wrh-300wh-h_firmware	le	2.12
wtc-300hwh_firmware	le	1.09
wtc-c1167gc-b_firmware	le	1.17
wtc-c1167gc-w_firmware	le	1.17

References

jvn.jp/en/jp/JVN05223215/

www.elecom.co.jp/news/security/20230711-01/