Vulnerability Details CVE-2023-40069
OS command injection vulnerability in ELECOM wireless LAN routers allows an attacker who can access the product to execute an arbitrary OS command by sending a specially crafted request. Affected products and versions are as follows: WRC-F1167ACF all versions, WRC-1750GHBK all versions, WRC-1167GHBK2 all versions, WRC-1750GHBK2-I all versions, and WRC-1750GHBK-E all versions.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.012
EPSS Ranking 78.1%
CVSS Severity
CVSS v3 Score 9.8
Products affected by CVE-2023-40069
-
cpe:2.3:h:elecom:wrc-1167ghbk2:-
-
cpe:2.3:h:elecom:wrc-1750ghbk-e:-
-
cpe:2.3:h:elecom:wrc-1750ghbk2-i:-
-
cpe:2.3:h:elecom:wrc-1750ghbk:-
-
cpe:2.3:h:elecom:wrc-f1167acf:-
-
cpe:2.3:o:elecom:wrc-1167ghbk2_firmware:-
-
cpe:2.3:o:elecom:wrc-1750ghbk-e_firmware:-
-
cpe:2.3:o:elecom:wrc-1750ghbk2-i_firmware:-
-
cpe:2.3:o:elecom:wrc-1750ghbk_firmware:-
-
cpe:2.3:o:elecom:wrc-f1167acf_firmware:-