CVE-2023-49695 | Elecom WRC-X3000GSN/WRC-X3000GS/WRC-X3000GSA Request os command injection

Posted by Angelo Barbosa | Dec 12, 2023 | CVE

A vulnerability, which was classified as critical, was found in Elecom WRC-X3000GSN, WRC-X3000GS and WRC-X3000GSA. Affected is an unknown function of the component Request Handler. The manipulation leads to os command injection.

This vulnerability is traded as CVE-2023-49695. The attack needs to be done within the local network. There is no exploit available.

CVE-2023-49695 | Elecom WRC-X3000GSN/WRC-X3000GS/WRC-X3000GSA Request os command injection

Related Posts

CVE-2024-0920 | TRENDnet TEW-822DRE 1.03B02 POST Request /admin_ping.htm ipv4_ping/ipv6_ping command injection

CVE-2024-4019 | Byzoro Smart S80 Management Platform up to 20240411 /importhtml.php sql deserialization

CVE-2024-47481 | Dell Data Lakehouse 1.0.0.0/1.1.0.0 access control (dsa-2024-419)

CVE-2021-22509 | OpenText NetIQ Advance Authentication up to 6.3.5.0 cleartext storage