PT-2020-18601 · Elecom · Wrc-1167Gst2+3

Goroh_Kun

Published

2020-10-06

Updated

2020-10-13

CVE-2020-5634

CVSS v3.1

8.8

High

Vector

AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions ELECOM LAN routers versions prior to v1.14 (WRC-2533GST2, WRC-1900GST2, WRC-1750GST2) ELECOM LAN routers WRC-1167GST2 version prior to v1.10

Description The issue allows an attacker on the same network segment to execute arbitrary OS commands with root privilege via unspecified vectors.

Recommendations For ELECOM LAN routers WRC-2533GST2, WRC-1900GST2, and WRC-1750GST2, update the firmware to version v1.14 or later. For ELECOM LAN routers WRC-1167GST2, update the firmware to version v1.10 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2020-5634

Affected Products

Wrc-1167Gst2

Wrc-1750Gst2

Wrc-1900Gst2

Wrc-2533Gst2

PT-2020-18601 · Elecom · Wrc-1167Gst2+3

CVE-2020-5634

Related Identifiers

Affected Products

References · 4