CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

9.8CVSS8.9AI score0.01764EPSS

ELECOM WRC 多款产品命令注入漏洞

ELECOM WRC is a home-ready IP camera from ELECOM Japan. Command injection vulnerability exists in ELECOM WRC-1167FEBK-A v1.18 and earlier, WRC-1167GEBK-S v1.03 and earlier, WRC-1167GHBK-S v1.03 and earlier, WRC-1167GHBK3-A v1.24 and earlier, which originates from a command injection on a port on ...

Exploits0References5

6.1CVSS6.6AI score0.00405EPSS

ELECOM WRH 跨站脚本漏洞

ELECOM WRH is a webcam for home use from ELECOM Japan. A security vulnerability exists in ELECOM WRH-300WH-H v2.12 and earlier versions, which stems from the presence of cross-site scripting that can be exploited by an attacker to execute arbitrary scripts on a logged-in user's web browser...

8.8CVSS6.9AI score0.00236EPSS

ELECOM WTC-C1167GC-B 跨站请求伪造漏洞

The ELECOM WTC is a repeater from ELECOM Japan. A security vulnerability exists in ELECOM WTC-C1167GC-B v1.17 and earlier versions, which stems from the presence of cross-site request forgery and may allow users to perform unexpected actions if they view a malicious page while logged in...

6.5CVSS6.5AI score0.00291EPSS

ELECOM WRC 安全漏洞

The ELECOM WRC is a home-ready network camera from ELECOM Japan. A security vulnerability exists in ELECOM WRC-1167FEBK-A v1.18 and earlier versions, which stems from the presence of an information disclosure that could allow network-adjacent attackers with access to the affected product to...

Exploits0References5

CNNVD•added 2023/07/11 12:0 a.m.•3 views

ELECOM WRC 代码注入漏洞

The ELECOM WRC is a home-applicable network camera from ELECOM Japan. A code injection vulnerability exists in ELECOM WRC-1167FEBK-A v1.18 and earlier versions, which stems from the presence of a code injection that allows network-adjacent authenticated attackers to execute arbitrary operating...

8CVSS7.7AI score0.00475EPSS

Japan Vulnerability Notes•added 2023/07/11 12:0 a.m.•51 views

JVN#05223215: Multiple vulnerabilities in multiple ELECOM wireless LAN routers and wireless LAN repeaters

Wireless LAN routers and wireless LAN repeaters provided by ELECOM CO.,LTD. contain multiple vulnerabilities listed below. Cross-site Scripting CWE-79 - CVE-2023-37560 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N| Base Score: 6.1 CVSS v2|...

8.8CVSS8AI score0.00827EPSS

Exploits0

CNNVD•added 2023/07/11 12:0 a.m.•4 views

ELECOM WRH 输入验证错误漏洞

ELECOM WRH is a webcam for the home from ELECOM Japan. An input validation error vulnerability exists in ELECOM WRH-300WH-H v2.12 and earlier versions, which stems from the presence of an open redirection, where a user of a website using the affected product may be redirected to an arbitrary...

6.1CVSS6.6AI score0.00395EPSS

Japan Vulnerability Notes•added 2023/03/24 5:35 a.m.•3 views

ELECOM WAB-MAT registers its windows service executable with an unquoted file path

Overview WAB-MAT provided by ELECOM CO.,LTD. is Access Point Management Tool for corporate users. WAB-MAT registers its windows service executable with an unquoted file path CWE-428. Tomohisa Hasegawa of Canon IT Solutions Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the...

8.2CVSS6.6AI score0.00198EPSS

Exploits0References6

CNNVD•added 2023/03/24 12:0 a.m.•4 views

ELECOM WAB-MAT 代码问题漏洞

ELECOM WAB-MAT is a management tool for enterprise access points from ELECOM. A security vulnerability exists in ELECOM WAB-MAT version 5.0.0.8 and earlier, which originates from the use of unquoted file paths to register its Windows service executable...

7.3CVSS7.5AI score0.00198EPSS

Japan Vulnerability Notes•added 2023/03/24 12:0 a.m.•35 views

JVN#35246979: ELECOM WAB-MAT registers its windows service executable with an unquoted file path

WAB-MAT provided by ELECOM CO.,LTD. is Access Point Management Tool for corporate users. WAB-MAT registers its windows service executable with an unquoted file path CWE-428. Impact If a malicious executable is placed on a certain path, it may be executed with the privilege of the Windows service...

7.3CVSS7.2AI score0.00198EPSS

Exploits0

OSV•added 2023/02/15 1:15 a.m.•4 views

CVE-2023-22368

Untrusted search path vulnerability in ELECOM Camera Assistant 1.00 and QuickFileDealer Ver.1.2.1 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...

7.8CVSS5.6AI score0.00204EPSS

NVD•added 2023/02/15 1:15 a.m.•12 views

CVE-2023-22368

7.8CVSS7.7AI score0.00204EPSS

Prion•added 2023/02/15 1:15 a.m.•15 views

Design/Logic Flaw

4.4CVSS7.6AI score0.00204EPSS

Exploits0References2Affected Software2

Cvelist•added 2023/02/15 12:0 a.m.•21 views

CVE-2023-22368

7.9AI score0.00204EPSS

CVE•added 2023/02/15 12:0 a.m.•57 views

CVE-2023-22368

CVE-2023-22368 affects ELECOM Camera Assistant 1.00 and QuickFileDealer 1.2.1 (and earlier). The issue is an untrusted DLL search path (CWE-427) that could allow privilege escalation via a Trojan DLL loaded from an insecure directory. Affected installers may insecurely load Dynamic Link Libraries...

7.8CVSS7.7AI score0.00204EPSS

Exploits0References2Affected Software2

Vulnrichment•added 2023/02/15 12:0 a.m.•7 views

CVE-2023-22368

7.8AI score0.00204EPSS