Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2023-37567

Published: 13/07/2023 Updated: 18/08/2023
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 0
Subscribe to Wrc-1167ghbk3-a Firmware

Vulnerability Summary

Command injection vulnerability in ELECOM and LOGITEC wireless LAN routers allows a remote unauthenticated malicious user to execute an arbitrary command by sending a specially crafted request to a certain port of the web management page. Affected products and versions are as follows: WRC-1167GHBK3-A v1.24 and previous versions, WRC-F1167ACF2 all versions, WRC-600GHBK-A all versions, WRC-733FEBK2-A all versions, WRC-1467GHBK-A all versions, WRC-1900GHBK-A all versions, and LAN-W301NR all versions.

Vulnerable Product Search on Vulmon Subscribe to Product

elecom wrc-1167ghbk3-a_firmware

References

CWE-77https://www.elecom.co.jp/news/security/20230711-01/https://jvn.jp/en/vu/JVNVU91850798/https://www.elecom.co.jp/news/security/20230810-01/https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4761command injectionCVE-2024-3676IDORCVE-2024-30039CVE-2024-32113CVE-2024-30049CVE-2024-4776SQL injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook