Lucene search
K

537 matches found

Vulnrichment
Vulnrichment
added 2026/02/03 6:57 a.m.2 views

CVE-2026-24465

Stack-based buffer overflow vulnerability exists in ELECOM wireless LAN access point devices. A crafted packet may lead to arbitrary code execution...

9.8CVSS6.1AI score0.00745EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/02/03 6:57 a.m.25 views

CVE-2026-24465

Stack-based buffer overflow vulnerability exists in ELECOM wireless LAN access point devices. A crafted packet may lead to arbitrary code execution...

9.8CVSS0.00745EPSS
Exploits0References3
CVE
CVE
added 2026/02/03 6:57 a.m.21 views

CVE-2026-24465

Summary of CVE-2026-24465 (ELECOM wireless LAN access points): A stack-based buffer overflow exists in ELECOM wireless LAN access point devices, allowing a crafted packet to potentially execute arbitrary code. The vulnerability is described consistently across multiple sources (NVD/Red Hat/CIRCL/...

9.8CVSS6.1AI score0.00745EPSS
Exploits0References3Affected Software1
EUVD
EUVD
added 2026/02/03 6:57 a.m.4 views

EUVD-2026-5273

Stack-based buffer overflow vulnerability exists in ELECOM wireless LAN access point devices. A crafted packet may lead to arbitrary code execution...

9.8CVSS6.1AI score0.00745EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/02/03 6:57 a.m.3 views

CVE-2026-24465

Stack-based buffer overflow vulnerability exists in ELECOM wireless LAN access point devices. A crafted packet may lead to arbitrary code execution...

9.8CVSS6.1AI score0.00745EPSS
Exploits0References4Affected Software4
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2026/02/03 5:57 a.m.9 views

Multiple vulnerabilities in ELECOM wireless LAN products

Overview Wireless LAN products provided by ELECOM CO.,LTD. contain multiple vulnerabilities listed below. Cross-site request forgery CWE-352 - CVE-2026-20704 OS command injection CWE-78 - CVE-2026-22550 Use of weak credentials CWE-1391 - CVE-2026-24449 Stack-based buffer overflow CWE-121 -...

9.8CVSS6.3AI score0.01664EPSS
Exploits0References10
CNNVD
CNNVD
added 2026/02/03 12:0 a.m.6 views

ELECOM WRC-X1500GS-B和ELECOM WRC-X1500GSA-B 跨站请求伪造漏洞

ELECOM WRC-X1500GS-B and ELECOM WRC-X1500GSA-B are wireless routers produced by the Japanese company ELECOM. Both devices have a vulnerability related to cross-site request forgery. This vulnerability stems from cross-site request forgery attacks, which may cause unexpected behaviors when logged-...

5.1CVSS6AI score0.00133EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/02/03 12:0 a.m.5 views

PT-2026-6195

Name of the Vulnerable Software and Affected Versions ELECOM wireless LAN access point devices affected versions not specified Description A stack-based buffer overflow exists in ELECOM wireless LAN access point devices. A crafted packet may lead to arbitrary code execution. Recommendations At th...

9.8CVSS6.2AI score0.00745EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/02/03 12:0 a.m.8 views

ELECOM WRC-X1500GS-B和ELECOM WRC-X1500GSA-B 操作系统命令注入漏洞

ELECOM WRC-X1500GS-B and ELECOM WRC-X1500GSA-B are wireless routers produced by the Japanese company ELECOM. Both devices have a vulnerability related to OS command injection. This vulnerability stems from the ability to execute arbitrary OS commands through OS command injection...

8.8CVSS7.4AI score0.01664EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/02/03 12:0 a.m.8 views

ELECOM多款产品 安全漏洞

ELECOM WAB-S600-PS, among others, are products from the Japanese company ELECOM. ELECOM WAB-S600-PS is a wireless access point. ELECOM WAB-S300 is also a wireless access point. ELECOM WAB-S733IW2-PD is a wireless access point device. Several of ELECOM’s products have security vulnerabilities; the...

9.8CVSS7.6AI score0.00745EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/02/03 12:0 a.m.9 views

ELECOM WRC-X1500GS-B和ELECOM WRC-X1500GSA-B 安全漏洞

ELECOM WRC-X1500GS-B and ELECOM WRC-X1500GSA-B are wireless routers produced by the Japanese company ELECOM. Both devices have security vulnerabilities, where the initial password can be easily calculated from system information...

5.1CVSS6.1AI score0.00188EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/01/09 12:40 p.m.8 views

CVE-2023-43757

Inadequate encryption strength vulnerability in multiple routers provided by ELECOM CO.,LTD. and LOGITEC CORPORATION allows a network-adjacent unauthenticated attacker to guess the encryption key used for wireless LAN communication and intercept the communication. As for the affected...

6.5CVSS6.8AI score0.00496EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:29 p.m.7 views

CVE-2023-40069

OS command injection vulnerability in ELECOM wireless LAN routers allows an attacker who can access the product to execute an arbitrary OS command by sending a specially crafted request. Affected products and versions are as follows: WRC-F1167ACF all versions, WRC-1750GHBK all versions,...

9.8CVSS7.9AI score0.01241EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:28 p.m.9 views

CVE-2023-40072

OS command injection vulnerability in ELECOM wireless LAN access point devices allows an authenticated user to execute an arbitrary OS command by sending a specially crafted request...

8.8CVSS7.6AI score0.01566EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:5 a.m.10 views

CVE-2024-34021

Unrestricted upload of file with dangerous type vulnerability exists in ELECOM wireless LAN routers. A specially crafted file may be uploaded to the affected product by a logged-in user with an administrative privilege, resulting in an arbitrary OS command execution...

6.8CVSS7.1AI score0.00364EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:4 a.m.10 views

CVE-2024-39607

OS command injection vulnerability exists in ELECOM wireless LAN routers. A specially crafted request may be sent to the affected product by a logged-in user with an administrative privilege to execute an arbitrary OS command...

6.8CVSS7.7AI score0.00853EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/12/10 8:36 a.m.5 views

CVE-2025-66271

Clone for Windows provided by ELECOM CO.,LTD. registers a Windows service with an unquoted file path. A user with the write permission on the root directory of the system drive may execute arbitrary code with SYSTEM privilege...

8.4CVSS7.7AI score0.0013EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/09 8:29 a.m.20 views

CVE-2025-66271

Clone for Windows provided by ELECOM CO.,LTD. registers a Windows service with an unquoted file path. A user with the write permission on the root directory of the system drive may execute arbitrary code with SYSTEM privilege...

8.4CVSS0.0013EPSS
Exploits0References2
CVE
CVE
added 2025/12/09 8:29 a.m.8 views

CVE-2025-66271

CVE-2025-66271 affects ELECOM Clone for Windows, where the software registers a Windows service with an unquoted file path (unquoted service path). The root cause is an unquoted path in the service configuration, enabling a local attacker with write access to the system drive root to execute arbi...

8.4CVSS7.4AI score0.0013EPSS
Exploits0References2
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2025/12/09 8:16 a.m.3 views

ELECOM Clone for Windows registers a Windows service with an unquoted file path

Overview Clone for Windows provided by ELECOM CO.,LTD. registers a Windows service with an unquoted file path. Clone for Windows provided by ELECOM CO.,LTD. contains the following vulnerability. Unquoted search path or element CWE-428 - CVE-2025-66271 Kazuma Matsumoto of GMO Cybersecurity by IERA...

8.4CVSS7AI score0.0013EPSS
Exploits0References5
Rows per page
Query Builder