CVE-2023-40069
CVSS 3.1 Score 9.8 of 10 (high)
Details
Summary
CVE-2023-40E69 is a critical OS command injection vulnerability affecting several ELECOM wireless LAN routers, including WRC-F1167ACF, WRC-1750GHBK, WRC-1167GHBK2, WRC-1750GHBK2-I, and WRC-1750GHBK-E. An attacker with access to these products can exploit this weakness by sending a maliciously crafted request, potentially gaining the ability to execute arbitrary OS commands. This vulnerability poses a significant risk, as it allows an attacker to gain unauthorized control over the affected device and potentially the entire network. It is essential that users of these routers update to the latest available firmware as soon as possible to mitigate this threat.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.