Skip to main content

Wrc 300Febk S Firmware

3 CVEs product

Monthly

CVE-2021-20649 MEDIUM This Month

ELECOM WRC-300FEBK-S contains an improper certificate validation vulnerability. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Command Injection Wrc 300Febk S Firmware
NVD
CVSS 3.1
4.8
EPSS
0.3%
CVE-2021-20648 MEDIUM This Month

ELECOM WRC-300FEBK-S allows an attacker with administrator rights to execute arbitrary OS commands via unspecified vectors. Rated medium severity (CVSS 6.8), this vulnerability is low attack complexity. No vendor patch available.

Command Injection Wrc 300Febk S Firmware
NVD
CVSS 3.1
6.8
EPSS
0.4%
CVE-2021-20647 MEDIUM This Month

Cross-site request forgery (CSRF) vulnerability in ELECOM WRC-300FEBK-S allows remote attackers to hijack the authentication of administrators and execute an arbitrary request via unspecified vector. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Wrc 300Febk S Firmware
NVD
CVSS 3.1
6.5
EPSS
0.5%
EPSS 0% CVSS 4.8
MEDIUM This Month

ELECOM WRC-300FEBK-S contains an improper certificate validation vulnerability. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Command Injection Wrc 300Febk S Firmware
NVD
EPSS 0% CVSS 6.8
MEDIUM This Month

ELECOM WRC-300FEBK-S allows an attacker with administrator rights to execute arbitrary OS commands via unspecified vectors. Rated medium severity (CVSS 6.8), this vulnerability is low attack complexity. No vendor patch available.

Command Injection Wrc 300Febk S Firmware
NVD
EPSS 0% CVSS 6.5
MEDIUM This Month

Cross-site request forgery (CSRF) vulnerability in ELECOM WRC-300FEBK-S allows remote attackers to hijack the authentication of administrators and execute an arbitrary request via unspecified vector. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Wrc 300Febk S Firmware
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy