Today > vulnerabilities   -   You can now download lists of IOCs here!

CVE-2024-40883

Aug. 1, 2024, 12:42 p.m.

Product(s) Impacted

ELECOM wireless LAN routers

Description

Cross-site request forgery vulnerability exists in ELECOM wireless LAN routers. Viewing a malicious page while logging in to the affected product with an administrative privilege, the user may be directed to perform unintended operations such as changing the login ID, login password, etc.

Weaknesses

Date

Published: Aug. 1, 2024, 2:15 a.m.

Last Modified: Aug. 1, 2024, 12:42 p.m.

Status : Undergoing Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

vultures@jpcert.or.jp

References

https://jvn.jp/ vultures@jpcert.or.jp

https://www.elecom.co.jp/ vultures@jpcert.or.jp