4 matches found
CVE-2021-20644
ELECOM WRC-1467GHBK-A allows arbitrary scripts to be executed on the user's web browser by displaying a specially crafted SSID on the web setup page...
CVE-2021-20644
ELECOM WRC-1467GHBK-A allows arbitrary scripts to be executed on the user's web browser by displaying a specially crafted SSID on the web setup page...
CVE-2021-20644
CVE-2021-20644 affects ELECOM WRC-1467GHBK-A. The vulnerability arises in the web setup page where displaying a specially crafted SSID can cause arbitrary scripts to execute in a user’s browser (cross-site scripting). The connected documents confirm the affected product and the impact as script e...
JVN#47580234: Multiple vulnerabilities in multiple ELECOM products
Multiple products provided by ELECOM CO.,LTD. contain multiple vulnerabilities listed below. Improper Access Control CWE-284 - CVE-2021-20643 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N| Base Score: 5.3 CVSS v2| AV:N/AC:L/Au:N/C:N/I:P/A:N| Base Score:...