537 matches found
Buffer overflow
Buffer overflow vulnerability in ELECOM LAN routers WRH-733GBK firmware v1.02.9 and prior and WRH-733GWH firmware v1.02.9 and prior allows a network-adjacent attacker with an administrator privilege to execute an arbitrary OS command via unspecified vectors...
Design/Logic Flaw
ELECOM LAN routers WRH-733GBK firmware v1.02.9 and prior and WRH-733GWH firmware v1.02.9 and prior allows a network-adjacent attacker with an administrator privilege to execute arbitrary OS commands via unspecified vectors...
Improper access control
Improper access control vulnerability in ELECOM routers WRC-1167GST2 firmware v1.25 and prior, WRC-1167GST2A firmware v1.25 and prior, WRC-1167GST2H firmware v1.25 and prior, WRC-2533GS2-B firmware v1.52 and prior, WRC-2533GS2-W firmware v1.52 and prior, WRC-1750GS firmware v1.03 and prior,...
Command injection
OS command injection vulnerability in ELECOM routers WRC-1167GST2 firmware v1.25 and prior, WRC-1167GST2A firmware v1.25 and prior, WRC-1167GST2H firmware v1.25 and prior, WRC-2533GS2-B firmware v1.52 and prior, WRC-2533GS2-W firmware v1.52 and prior, WRC-1750GS firmware v1.03 and prior,...
Cross site scripting
Cross-site scripting vulnerability in ELECOM LAN routers WRH-733GBK firmware v1.02.9 and prior and WRH-733GWH firmware v1.02.9 and prior allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors...
Cross site scripting
Cross-site scripting vulnerability in ELECOM LAN routers WRH-733GBK firmware v1.02.9 and prior and WRH-733GWH firmware v1.02.9 and prior allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors...
Design/Logic Flaw
ELECOM LAN routers WRH-733GBK firmware v1.02.9 and prior and WRH-733GWH firmware v1.02.9 and prior allows a network-adjacent attacker with an administrator privilege to execute arbitrary OS commands via unspecified vectors...
Improper access control
Improper access control vulnerability in ELECOM routers WRC-1167GST2 firmware v1.25 and prior, WRC-1167GST2A firmware v1.25 and prior, WRC-1167GST2H firmware v1.25 and prior, WRC-2533GS2-B firmware v1.52 and prior, WRC-2533GS2-W firmware v1.52 and prior, WRC-1750GS firmware v1.03 and prior,...
CVE-2021-20864
Improper access control vulnerability in ELECOM routers WRC-1167GST2 firmware v1.25 and prior, WRC-1167GST2A firmware v1.25 and prior, WRC-1167GST2H firmware v1.25 and prior, WRC-2533GS2-B firmware v1.52 and prior, WRC-2533GS2-W firmware v1.52 and prior, WRC-1750GS firmware v1.03 and prior,...
CVE-2021-20864
CVE-2021-20864 affects ELECOM routers (e.g., WRC-1167GST2, WRC-2533GS2, WRC-1750GS, WRC-1900GST, EDWRC-2533GST2, among others) and is caused by improper access control. This allows a network-adjacent unauthenticated attacker to bypass access restrictions and start the telnet service to execute ar...
CVE-2021-20863
CVE-2021-20863 is an OS command injection vulnerability in ELECOM Edwrc/WRC routers. A network-adjacent, authenticated attacker can run arbitrary commands as root via unspecified vectors. Affected firmware ranges include WRC-1167GST2 (v1.25 and prior) and WRC-1167GST2A/H (v1.25 and prior); WRC-25...
CVE-2021-20863
OS command injection vulnerability in ELECOM routers WRC-1167GST2 firmware v1.25 and prior, WRC-1167GST2A firmware v1.25 and prior, WRC-1167GST2H firmware v1.25 and prior, WRC-2533GS2-B firmware v1.52 and prior, WRC-2533GS2-W firmware v1.52 and prior, WRC-1750GS firmware v1.03 and prior,...
CVE-2021-20862
The CVE-2021-20862 entry concerns ELECOM router devices in the WRC/WMC EDWRC families (e.g., WRC-1167GST2, WRC-2533GS2, WRC-1750GSV, EDWRC-2533GST2, and related models) affected by an improper access control vulnerability. The issue allows a network-adjacent unauthenticated attacker to bypass acc...
CVE-2021-20862
Improper access control vulnerability in ELECOM routers WRC-1167GST2 firmware v1.25 and prior, WRC-1167GST2A firmware v1.25 and prior, WRC-1167GST2H firmware v1.25 and prior, WRC-2533GS2-B firmware v1.52 and prior, WRC-2533GS2-W firmware v1.52 and prior, WRC-1750GS firmware v1.03 and prior,...
CVE-2021-20861
CVE-2021-20861 affects ELECOM LAN routers and is described as an improper access control vulnerability that lets a network-adjacent authenticated attacker bypass restrictions and access the device management screen via unspecified vectors. Multiple sources (NVD, Red Hat advisory, CVE list, JVN, C...
CVE-2021-20861
Improper access control vulnerability in ELECOM LAN routers WRC-1167GST2 firmware v1.25 and prior, WRC-1167GST2A firmware v1.25 and prior, WRC-1167GST2H firmware v1.25 and prior, WRC-2533GS2-B firmware v1.52 and prior, WRC-2533GS2-W firmware v1.52 and prior, WRC-1750GS firmware v1.03 and prior,...
CVE-2021-20860
CVE-2021-20860 is a CSRF vulnerability in ELECOM LAN routers that allows a remote authenticated attacker to hijack administrator authentication via a crafted page. Affected devices span multiple ELECOM families (e.g., WRC-1167GST2, WRC-2533-series, WRC-1750GS, WRC-1900GST, and related EDWRC/WRH/W...
CVE-2021-20860
Cross-site request forgery CSRF vulnerability in ELECOM LAN routers WRC-1167GST2 firmware v1.25 and prior, WRC-1167GST2A firmware v1.25 and prior, WRC-1167GST2H firmware v1.25 and prior, WRC-2533GS2-B firmware v1.52 and prior, WRC-2533GS2-W firmware v1.52 and prior, WRC-1750GS firmware v1.03 and...
CVE-2021-20859
ELECOM CVE-2021-20859 describes an OS command injection vulnerability affecting numerous ELECOM LAN routers, allowing a network-adjacent authenticated attacker to execute arbitrary OS commands via unspecified vectors. The affected models/firmware ranges include WRC-1167GST2, WRC-1167GST2A/H, WRC-...
CVE-2021-20859
ELECOM LAN routers WRC-1167GST2 firmware v1.25 and prior, WRC-1167GST2A firmware v1.25 and prior, WRC-1167GST2H firmware v1.25 and prior, WRC-2533GS2-B firmware v1.52 and prior, WRC-2533GS2-W firmware v1.52 and prior, WRC-1750GS firmware v1.03 and prior, WRC-1750GSV firmware v2.11 and prior,...