Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2023-40069

Опубликовано: 18 авг. 2023
Источник: nvd
CVSS3: 9.8
EPSS Низкий

Описание

OS command injection vulnerability in ELECOM wireless LAN routers allows an attacker who can access the product to execute an arbitrary OS command by sending a specially crafted request. Affected products and versions are as follows: WRC-F1167ACF all versions, WRC-1750GHBK all versions, WRC-1167GHBK2 all versions, WRC-1750GHBK2-I all versions, and WRC-1750GHBK-E all versions.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:elecom:wrc-f1167acf_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:elecom:wrc-f1167acf:-:*:*:*:*:*:*:*
Конфигурация 2

Одновременно

cpe:2.3:o:elecom:wrc-1750ghbk_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:elecom:wrc-1750ghbk:-:*:*:*:*:*:*:*
Конфигурация 3

Одновременно

cpe:2.3:o:elecom:wrc-1167ghbk2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:elecom:wrc-1167ghbk2:-:*:*:*:*:*:*:*
Конфигурация 4

Одновременно

cpe:2.3:o:elecom:wrc-1750ghbk2-i_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:elecom:wrc-1750ghbk2-i:-:*:*:*:*:*:*:*
Конфигурация 5

Одновременно

cpe:2.3:o:elecom:wrc-1750ghbk-e_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:elecom:wrc-1750ghbk-e:-:*:*:*:*:*:*:*

EPSS

Процентиль: 76%
0.00929
Низкий

9.8 Critical

CVSS3

Дефекты

CWE-78
CWE-78

Связанные уязвимости

github логотип

GHSA-hh45-jmxc-j9rr

CVSS3: 9.8
github
больше 2 лет назад

OS command injection vulnerability in ELECOM wireless LAN routers allows an attacker who can access the product to execute an arbitrary OS command by sending a specially crafted request. Affected products and versions are as follows: WRC-F1167ACF all versions, WRC-1750GHBK all versions, WRC-1167GHBK2 all versions, WRC-1750GHBK2-I all versions, and WRC-1750GHBK-E all versions.

EPSS

Процентиль: 76%
0.00929
Низкий

9.8 Critical

CVSS3

Дефекты

CWE-78
CWE-78