Vulnerability Details CVE-2023-37561
Open redirect vulnerability in ELECOM wireless LAN routers and ELECOM wireless LAN repeaters allows a remote unauthenticated attacker to redirect users to arbitrary web sites and conduct phishing attacks via a specially crafted URL. Affected products and versions are as follows: WRH-300WH-H v2.12 and earlier, WTC-300HWH v1.09 and earlier, WTC-C1167GC-B v1.17 and earlier, and WTC-C1167GC-W v1.17 and earlier.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 54.8%
CVSS Severity
CVSS v3 Score 6.1
References
Products affected by CVE-2023-37561
-
cpe:2.3:h:elecom:wrh-300wh-h:-
-
cpe:2.3:h:elecom:wtc-300hwh:-
-
cpe:2.3:h:elecom:wtc-c1167gc-b:-
-
cpe:2.3:h:elecom:wtc-c1167gc-w:-
-
cpe:2.3:o:elecom:wrh-300wh-h_firmware:-
-
cpe:2.3:o:elecom:wrh-300wh-h_firmware:2.12
-
cpe:2.3:o:elecom:wtc-300hwh_firmware:-
-
cpe:2.3:o:elecom:wtc-300hwh_firmware:1.09
-
cpe:2.3:o:elecom:wtc-c1167gc-b_firmware:-
-
cpe:2.3:o:elecom:wtc-c1167gc-b_firmware:1.17
-
cpe:2.3:o:elecom:wtc-c1167gc-w_firmware:-
-
cpe:2.3:o:elecom:wtc-c1167gc-w_firmware:1.17