Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2023-37561

Опубликовано: 13 июл. 2023
Источник: nvd
CVSS3: 6.1
EPSS Низкий

Описание

Open redirect vulnerability in ELECOM wireless LAN routers and ELECOM wireless LAN repeaters allows a remote unauthenticated attacker to redirect users to arbitrary web sites and conduct phishing attacks via a specially crafted URL. Affected products and versions are as follows: WRH-300WH-H v2.12 and earlier, WTC-300HWH v1.09 and earlier, WTC-C1167GC-B v1.17 and earlier, and WTC-C1167GC-W v1.17 and earlier.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:elecom:wrh-300wh-h_firmware:*:*:*:*:*:*:*:*
Версия до 2.12 (включая)
cpe:2.3:h:elecom:wrh-300wh-h:-:*:*:*:*:*:*:*
Конфигурация 2

Одновременно

cpe:2.3:o:elecom:wtc-300hwh_firmware:*:*:*:*:*:*:*:*
Версия до 1.09 (включая)
cpe:2.3:h:elecom:wtc-300hwh:-:*:*:*:*:*:*:*
Конфигурация 3

Одновременно

cpe:2.3:o:elecom:wtc-c1167gc-b_firmware:*:*:*:*:*:*:*:*
Версия до 1.17 (включая)
cpe:2.3:h:elecom:wtc-c1167gc-b:-:*:*:*:*:*:*:*
Конфигурация 4

Одновременно

cpe:2.3:o:elecom:wtc-c1167gc-w_firmware:*:*:*:*:*:*:*:*
Версия до 1.17 (включая)
cpe:2.3:h:elecom:wtc-c1167gc-w:-:*:*:*:*:*:*:*

EPSS

Процентиль: 55%
0.00323
Низкий

6.1 Medium

CVSS3

Дефекты

CWE-601

Связанные уязвимости

github логотип

GHSA-gfq6-w9c5-675j

CVSS3: 6.1
github
больше 2 лет назад

Open redirect vulnerability in ELECOM wireless LAN routers and ELECOM wireless LAN repeaters allows a remote unauthenticated attacker to redirect users to arbitrary web sites and conduct phishing attacks via a specially crafted URL. Affected products and versions are as follows: WRH-300WH-H v2.12 and earlier, WTC-300HWH v1.09 and earlier, WTC-C1167GC-B v1.17 and earlier, and WTC-C1167GC-W v1.17 and earlier.

EPSS

Процентиль: 55%
0.00323
Низкий

6.1 Medium

CVSS3

Дефекты

CWE-601