Vulnerabilities > Elecom > WRC X3000Gsa Firmware

DATE CVE VULNERABILITY TITLE RISK
2023-12-12 CVE-2023-49695 OS Command Injection vulnerability in Elecom products
OS command injection vulnerability in WRC-X3000GSN v1.0.2, WRC-X3000GS v1.0.24 and earlier, and WRC-X3000GSA v1.0.24 and earlier allows a network-adjacent attacker with an administrative privilege to execute an arbitrary OS command by sending a specially crafted request to the product.
low complexity
elecom CWE-78
6.8