Vulnerabilities > CVE-2024-43689 - Out-of-bounds Write vulnerability in Elecom Wab-I1750-Ps Firmware and Wab-S1167-Ps Firmware

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

elecom

CWE-787

critical

NVD

Published: 2024-10-21

Updated: 2024-10-24

Summary

Stack-based buffer overflow vulnerability exists in WAB-I1750-PS and WAB-S1167-PS. By processing a specially crafted HTTP request, arbitrary code may be executed.

Vulnerable Configurations

Part	Description	Count
OS	Elecom Elecom WAB I1750 PS Firmware * Elecom WAB S1167 PS Firmware *	2
Hardware	Elecom Elecom WAB I1750 PS - Elecom WAB S1167 PS -	2

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://www.elecom.co.jp/news/security/20240827-01/
https://jvn.jp/en/jp/JVN24885537/