Vulnerabilities > Elecom > WRC 1167Ghbk3 A Firmware

DATE CVE VULNERABILITY TITLE RISK
2023-07-13 CVE-2023-37564 OS Command Injection vulnerability in Elecom products
OS command injection vulnerability in ELECOM wireless LAN routers allows a network-adjacent authenticated attacker to execute an arbitrary OS command with a root privilege by sending a specially crafted request.
low complexity
elecom CWE-78
8.0
2023-07-13 CVE-2023-37565 Code Injection vulnerability in Elecom products
Code injection vulnerability in ELECOM wireless LAN routers allows a network-adjacent authenticated attacker to execute arbitrary code by sending a specially crafted request.
low complexity
elecom CWE-94
8.0
2023-07-13 CVE-2023-37563 Unspecified vulnerability in Elecom products
ELECOM wireless LAN routers are vulnerable to sensitive information exposure, which allows a network-adjacent unauthorized attacker to obtain sensitive information.
low complexity
elecom
6.5
2023-07-13 CVE-2023-37566 Command Injection vulnerability in Elecom Wrc-1167Febk-A Firmware and Wrc-1167Ghbk3-A Firmware
Command injection vulnerability in ELECOM and LOGITEC wireless LAN routers allows a network-adjacent authenticated attacker to execute an arbitrary command by sending a specially crafted request to the web management page.
low complexity
elecom CWE-77
8.0
2023-07-13 CVE-2023-37567 Command Injection vulnerability in Elecom Wrc-1167Ghbk3-A Firmware
Command injection vulnerability in ELECOM and LOGITEC wireless LAN routers allows a remote unauthenticated attacker to execute an arbitrary command by sending a specially crafted request to a certain port of the web management page.
network
low complexity
elecom CWE-77
critical
9.8