Weak Encryption Vulnerability in ELECOM and LOGITEC Routers: Guessing Encryption Key and Intercepting Wireless LAN Communication

Weak Encryption Vulnerability in ELECOM and LOGITEC Routers: Guessing Encryption Key and Intercepting Wireless LAN Communication

CVE-2023-43757 · MEDIUM Severity

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Inadequate encryption strength vulnerability in multiple routers provided by ELECOM CO.,LTD. and LOGITEC CORPORATION allows a network-adjacent unauthenticated attacker to guess the encryption key used for wireless LAN communication and intercept the communication. As for the affected products/versions, see the information provided by the vendor under [References] section.

Learn more about our Network Penetration Testing.