CVE-2024-40883: CSRF
First published: Thu Aug 01 2024(Updated: )
Cross-site request forgery vulnerability exists in ELECOM wireless LAN routers. Viewing a malicious page while logging in to the affected product with an administrative privilege, the user may be directed to perform unintended operations such as changing the login ID, login password, etc.
Credit: vultures@jpcert.or.jp
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| <1.69 | ||
| All of | ||
| <1.69 | ||
| All of | ||
| <1.69 | ||
| All of | ||
| <1.12 | ||
| All of | ||
| <1.12 | ||
| All of | ||
| <1.12 | ||
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
- agent/references
- agent/weakness
- agent/type
- agent/description
- agent/first-publish-date
- agent/author
- collector/mitre-cve
- source/MITRE
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/last-modified-date
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/event
- agent/source
- vendor/elecom
- canonical/elecom wrc-2533gs2-b firmware
- canonical/elecom wrc-2533gs2-b
- canonical/elecom wrc-2533gs2-w firmware
- canonical/elecom wrc-2533gs2-w
- canonical/elecom wrc-2533gs2v-b firmware
- canonical/elecom wrc-2533gs2v-b
- canonical/elecom wrc-x6000xs-g firmware
- canonical/elecom wrc-x6000xs-g
- canonical/elecom wrc-x1500gs-b firmware
- canonical/elecom wrc-x1500gs-b
- canonical/elecom wrc-x1500gsa-b firmware
- canonical/elecom wrc-x1500gsa-b