Skip to main content

Wrc X1500Gs B Firmware

4 CVEs product

Monthly

CVE-2026-24465 CRITICAL Act Now

ELECOM wireless LAN access point devices have a stack-based buffer overflow that allows remote attackers to execute code or crash the device via crafted packets.

Buffer Overflow Stack Overflow RCE Wab S300Iw Pd Firmware Wab S733Iw Pd Firmware +6
NVD
CVSS 4.0
9.3
EPSS
0.0%
CVE-2026-24449 MEDIUM This Month

WRC-X1500GS-B and WRC-X1500GSA-B routers contain a weak credential derivation vulnerability where initial administrative passwords can be predicted from publicly available system information, potentially allowing unauthenticated attackers to gain administrative access. The vulnerability requires physical proximity to the device to obtain necessary system details, limiting its practical exploitability. No patch is currently available for affected devices.

Information Disclosure Wrc X1500Gsa B Firmware Wrc X1500Gs B Firmware
NVD
CVSS 4.0
5.1
EPSS
0.0%
CVE-2026-22550 HIGH This Week

Authenticated command injection in WRC-X1500GS-B and WRC-X1500GSA-B routers enables logged-in users to execute arbitrary OS commands through specially crafted requests. An attacker with valid credentials can gain complete system control over the affected devices. No patch is currently available to remediate this vulnerability.

Command Injection Wrc X1500Gsa B Firmware Wrc X1500Gs B Firmware
NVD
CVSS 4.0
8.6
EPSS
0.1%
CVE-2024-40883 HIGH This Week

Cross-site request forgery vulnerability exists in ELECOM wireless LAN routers. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Wrc 2533Gs2 B Firmware Wrc 2533Gs2 W Firmware Wrc 2533Gs2V B Firmware Wrc X6000Xs G Firmware +2
NVD
CVSS 3.1
8.8
EPSS
0.2%
EPSS 0% CVSS 9.3
CRITICAL Act Now

ELECOM wireless LAN access point devices have a stack-based buffer overflow that allows remote attackers to execute code or crash the device via crafted packets.

Buffer Overflow Stack Overflow RCE +8
NVD
EPSS 0% CVSS 5.1
MEDIUM This Month

WRC-X1500GS-B and WRC-X1500GSA-B routers contain a weak credential derivation vulnerability where initial administrative passwords can be predicted from publicly available system information, potentially allowing unauthenticated attackers to gain administrative access. The vulnerability requires physical proximity to the device to obtain necessary system details, limiting its practical exploitability. No patch is currently available for affected devices.

Information Disclosure Wrc X1500Gsa B Firmware Wrc X1500Gs B Firmware
NVD
EPSS 0% CVSS 8.6
HIGH This Week

Authenticated command injection in WRC-X1500GS-B and WRC-X1500GSA-B routers enables logged-in users to execute arbitrary OS commands through specially crafted requests. An attacker with valid credentials can gain complete system control over the affected devices. No patch is currently available to remediate this vulnerability.

Command Injection Wrc X1500Gsa B Firmware Wrc X1500Gs B Firmware
NVD
EPSS 0% CVSS 8.8
HIGH This Week

Cross-site request forgery vulnerability exists in ELECOM wireless LAN routers. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Wrc 2533Gs2 B Firmware Wrc 2533Gs2 W Firmware +4
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy