CVE-2024-40883

Name of the Vulnerable Software and Affected Versions ELECOM WRC-X6000XS-G/WRC-X1500GS-B/WRC-X1500GSA-B versions up to 1.11

Description A cross-site request forgery issue exists in ELECOM wireless LAN routers. When a user with administrative privileges views a malicious page while logged in to the affected product, they may be directed to perform unintended operations, such as changing the login ID or login password.

Recommendations For ELECOM WRC-X6000XS-G/WRC-X1500GS-B/WRC-X1500GSA-B versions up to 1.11, patch immediately to mitigate the risk of unauthorized actions on behalf of users.