Arbitrary Command Execution Vulnerability in ELECOM Wireless LAN Routers

Arbitrary Command Execution Vulnerability in ELECOM Wireless LAN Routers

CVE-2023-37568 · HIGH Severity

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

ELECOM wireless LAN routers WRC-1167GHBK-S v1.03 and earlier, and WRC-1167GEBK-S v1.03 and earlier allow a network-adjacent authenticated attacker to execute an arbitrary command by sending a specially crafted request to the web management page.

Learn more about our Web App Pen Testing.