CVE-2023-49695 | Elecom WRC-X3000GSN/WRC-X3000GS/WRC-X3000GSA Request os command injection

Posted by Angelo Barbosa | Dec 12, 2023 | CVE

A vulnerability, which was classified as critical, was found in Elecom WRC-X3000GSN, WRC-X3000GS and WRC-X3000GSA. Affected is an unknown function of the component Request Handler. The manipulation leads to os command injection.

This vulnerability is traded as CVE-2023-49695. The attack needs to be done within the local network. There is no exploit available.

CVE-2023-49695 | Elecom WRC-X3000GSN/WRC-X3000GS/WRC-X3000GSA Request os command injection

Related Posts

CVE-2023-7159 | gopeak MasterLab up to 3.3.10 app/ctrl/admin/User.php add/update avatar unrestricted upload

CVE-2024-46040 | IoT Haat Smart Plug IH-IN-16A-S 5.16.1 Authentication Token session expiration

CVE-2024-2888 | BoldGrid Post and Page Builder Plugin up to 1.26.2 on WordPress cross site scripting

CVE-2024-22416 | pyLoad up to 0.5.0b3.dev77 API cross-site request forgery (GHSA-pgpj-v85q-h5fm)