Arbitrary Script Execution Vulnerability in ELECOM WRC-1467GHBK-A

Arbitrary Script Execution Vulnerability in ELECOM WRC-1467GHBK-A

CVE-2021-20644 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

ELECOM WRC-1467GHBK-A allows arbitrary scripts to be executed on the user's web browser by displaying a specially crafted SSID on the web setup page.

Learn more about our Web App Pen Testing.