CVE-2023-39944

Summary

OS command injection vulnerability in WRC-F1167ACF all versions, and WRC-1750GHBK all versions allows an attacker who can access the product to execute an arbitrary OS command by sending a specially crafted request.

Affected Software

VendorProductVersion RangeStatus
ELECOM CO.,LTD.WRC-F1167ACFall versionsaffected
ELECOM CO.,LTD.WRC-1750GHBKall versionsaffected

Weaknesses

  • OS command injection

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References