Product:

Wrc\-2533gs2v\-B_firmware

(Elecom)
Repositories

Unknown:

This might be proprietary software.
#Vulnerabilities 3
Date Id Summary Products Score Patch Annotated
2024-02-28 CVE-2024-21798 ELECOM wireless LAN routers contain a cross-site scripting vulnerability. Assume that a malicious administrative user configures the affected product with specially crafted content. When another administrative user logs in and operates the product, an arbitrary script may be executed on the web browser. Note that WMC-X1800GST-B is also included in e-Mesh Starter Kit "WMC-2LX-B". Wmc\-X1800gst\-B_firmware, Wrc\-1167gs2\-B_firmware, Wrc\-1167gs2h\-B_firmware, Wrc\-1167gst2_firmware, Wrc\-2533gs2\-B_firmware, Wrc\-2533gs2\-W_firmware, Wrc\-2533gs2v\-B_firmware, Wrc\-2533gst2_firmware, Wrc\-G01\-W_firmware, Wrc\-X3200gst3\-B_firmware 4.8
2024-02-28 CVE-2024-23910 Cross-site request forgery (CSRF) vulnerability in ELECOM wireless LAN routers and wireless LAN repeater allows a remote unauthenticated attacker to hijack the authentication of administrators and to perform unintended operations to the affected product. Note that WMC-X1800GST-B and WSC-X1800GS-B are also included in e-Mesh Starter Kit "WMC-2LX-B". Wmc\-X1800gst\-B_firmware, Wrc\-1167gs2\-B_firmware, Wrc\-1167gs2h\-B_firmware, Wrc\-1167gst2_firmware, Wrc\-2533gs2\-B_firmware, Wrc\-2533gs2\-W_firmware, Wrc\-2533gs2v\-B_firmware, Wrc\-2533gst2_firmware, Wrc\-G01\-W_firmware, Wrc\-X3200gst3\-B_firmware, Wsc\-X1800gs\-B_firmware 8.8
2024-08-01 CVE-2024-40883 Cross-site request forgery vulnerability exists in ELECOM wireless LAN routers. Viewing a malicious page while logging in to the affected product with an administrative privilege, the user may be directed to perform unintended operations such as changing the login ID, login password, etc. Wrc\-2533gs2\-B_firmware, Wrc\-2533gs2\-W_firmware, Wrc\-2533gs2v\-B_firmware, Wrc\-X1500gs\-B_firmware, Wrc\-X1500gsa\-B_firmware, Wrc\-X6000xs\-G_firmware 8.8