Known Vulnerabilities
CVE-2024-43689
Stack-based buffer overflow vulnerability exists in ELECOM wireless access points. By processing a specially crafted HTTP request, arbitrary code may be executed.
HIGH
CVSS 8.8
Published Oct 21, 2024
CVE-2024-42412
Cross-site scripting vulnerability exists in ELECOM wireless access points due to improper processing of input values in menu.cgi. If a user views a malicious web page while logged in to the product, an arbitrary script may be executed on the user's web browser.
MEDIUM
CVSS 6.1
Published Aug 30, 2024
CVE-2023-40072
OS command injection vulnerability in ELECOM wireless LAN access point devices allows an authenticated user to execute an arbitrary OS command by sending a specially crafted request.
UNKNOWN
Published Aug 18, 2023