537 matches found
CVE-2026-24465
Stack-based buffer overflow vulnerability exists in ELECOM wireless LAN access point devices. A crafted packet may lead to arbitrary code execution...
CVE-2026-24465
Stack-based buffer overflow vulnerability exists in ELECOM wireless LAN access point devices. A crafted packet may lead to arbitrary code execution...
CVE-2026-24465
Summary of CVE-2026-24465 (ELECOM wireless LAN access points): A stack-based buffer overflow exists in ELECOM wireless LAN access point devices, allowing a crafted packet to potentially execute arbitrary code. The vulnerability is described consistently across multiple sources (NVD/Red Hat/CIRCL/...
EUVD-2026-5273
Stack-based buffer overflow vulnerability exists in ELECOM wireless LAN access point devices. A crafted packet may lead to arbitrary code execution...
CVE-2026-24465
Stack-based buffer overflow vulnerability exists in ELECOM wireless LAN access point devices. A crafted packet may lead to arbitrary code execution...
Multiple vulnerabilities in ELECOM wireless LAN products
Overview Wireless LAN products provided by ELECOM CO.,LTD. contain multiple vulnerabilities listed below. Cross-site request forgery CWE-352 - CVE-2026-20704 OS command injection CWE-78 - CVE-2026-22550 Use of weak credentials CWE-1391 - CVE-2026-24449 Stack-based buffer overflow CWE-121 -...
ELECOM WRC-X1500GS-B和ELECOM WRC-X1500GSA-B 跨站请求伪造漏洞
ELECOM WRC-X1500GS-B and ELECOM WRC-X1500GSA-B are wireless routers produced by the Japanese company ELECOM. Both devices have a vulnerability related to cross-site request forgery. This vulnerability stems from cross-site request forgery attacks, which may cause unexpected behaviors when logged-...
PT-2026-6195
Name of the Vulnerable Software and Affected Versions ELECOM wireless LAN access point devices affected versions not specified Description A stack-based buffer overflow exists in ELECOM wireless LAN access point devices. A crafted packet may lead to arbitrary code execution. Recommendations At th...
ELECOM WRC-X1500GS-B和ELECOM WRC-X1500GSA-B 操作系统命令注入漏洞
ELECOM WRC-X1500GS-B and ELECOM WRC-X1500GSA-B are wireless routers produced by the Japanese company ELECOM. Both devices have a vulnerability related to OS command injection. This vulnerability stems from the ability to execute arbitrary OS commands through OS command injection...
ELECOM多款产品 安全漏洞
ELECOM WAB-S600-PS, among others, are products from the Japanese company ELECOM. ELECOM WAB-S600-PS is a wireless access point. ELECOM WAB-S300 is also a wireless access point. ELECOM WAB-S733IW2-PD is a wireless access point device. Several of ELECOM’s products have security vulnerabilities; the...
ELECOM WRC-X1500GS-B和ELECOM WRC-X1500GSA-B 安全漏洞
ELECOM WRC-X1500GS-B and ELECOM WRC-X1500GSA-B are wireless routers produced by the Japanese company ELECOM. Both devices have security vulnerabilities, where the initial password can be easily calculated from system information...
CVE-2023-43757
Inadequate encryption strength vulnerability in multiple routers provided by ELECOM CO.,LTD. and LOGITEC CORPORATION allows a network-adjacent unauthenticated attacker to guess the encryption key used for wireless LAN communication and intercept the communication. As for the affected...
CVE-2023-40069
OS command injection vulnerability in ELECOM wireless LAN routers allows an attacker who can access the product to execute an arbitrary OS command by sending a specially crafted request. Affected products and versions are as follows: WRC-F1167ACF all versions, WRC-1750GHBK all versions,...
CVE-2023-40072
OS command injection vulnerability in ELECOM wireless LAN access point devices allows an authenticated user to execute an arbitrary OS command by sending a specially crafted request...
CVE-2024-34021
Unrestricted upload of file with dangerous type vulnerability exists in ELECOM wireless LAN routers. A specially crafted file may be uploaded to the affected product by a logged-in user with an administrative privilege, resulting in an arbitrary OS command execution...
CVE-2024-39607
OS command injection vulnerability exists in ELECOM wireless LAN routers. A specially crafted request may be sent to the affected product by a logged-in user with an administrative privilege to execute an arbitrary OS command...
CVE-2025-66271
Clone for Windows provided by ELECOM CO.,LTD. registers a Windows service with an unquoted file path. A user with the write permission on the root directory of the system drive may execute arbitrary code with SYSTEM privilege...
CVE-2025-66271
Clone for Windows provided by ELECOM CO.,LTD. registers a Windows service with an unquoted file path. A user with the write permission on the root directory of the system drive may execute arbitrary code with SYSTEM privilege...
CVE-2025-66271
CVE-2025-66271 affects ELECOM Clone for Windows, where the software registers a Windows service with an unquoted file path (unquoted service path). The root cause is an unquoted path in the service configuration, enabling a local attacker with write access to the system drive root to execute arbi...
ELECOM Clone for Windows registers a Windows service with an unquoted file path
Overview Clone for Windows provided by ELECOM CO.,LTD. registers a Windows service with an unquoted file path. Clone for Windows provided by ELECOM CO.,LTD. contains the following vulnerability. Unquoted search path or element CWE-428 - CVE-2025-66271 Kazuma Matsumoto of GMO Cybersecurity by IERA...