Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Wrh\-300wh\-H_firmware
(Elecom)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 3 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2023-11-16 | CVE-2023-43757 | Inadequate encryption strength vulnerability in multiple routers provided by ELECOM CO.,LTD. and LOGITEC CORPORATION allows a network-adjacent unauthenticated attacker to guess the encryption key used for wireless LAN communication and intercept the communication. As for the affected products/versions, see the information provided by the vendor under [References] section. | Lan\-W300n\/p_firmware, Lan\-W300n\/rs_firmware, Lan\-W301nr_firmware, Lan\-Wh300n\/dgp_firmware, Lan\-Wh300ndgpe_firmware, Wrc\-1167ghbk2_firmware, Wrc\-1167ghbk_firmware, Wrc\-1750ghbk2\-I_firmware, Wrc\-1750ghbk\-E_firmware, Wrc\-1750ghbk_firmware, Wrc\-2533ghbk2\-T_firmware, Wrc\-2533ghbk\-I_firmware, Wrc\-300febk_firmware, Wrc\-300ghbk2\-I_firmware, Wrc\-300ghbk_firmware, Wrc\-733febk_firmware, Wrc\-733ghbk\-C_firmware, Wrc\-733ghbk\-I_firmware, Wrc\-733ghbk_firmware, Wrc\-F1167acf_firmware, Wrc\-F300nf_firmware, Wrh\-150bk_firmware, Wrh\-150wh_firmware, Wrh\-300bk2\-S_firmware, Wrh\-300bk\-S_firmware, Wrh\-300bk_firmware, Wrh\-300rd_firmware, Wrh\-300sv_firmware, Wrh\-300wh2\-S_firmware, Wrh\-300wh\-H_firmware, Wrh\-300wh\-S_firmware, Wrh\-300wh_firmware, Wrh\-H300bk_firmware, Wrh\-H300wh_firmware | 6.5 | ||
| 2023-07-13 | CVE-2023-37561 | Open redirect vulnerability in ELECOM wireless LAN routers and ELECOM wireless LAN repeaters allows a remote unauthenticated attacker to redirect users to arbitrary web sites and conduct phishing attacks via a specially crafted URL. Affected products and versions are as follows: WRH-300WH-H v2.12 and earlier, WTC-300HWH v1.09 and earlier, WTC-C1167GC-B v1.17 and earlier, and WTC-C1167GC-W v1.17 and earlier. | Wrh\-300wh\-H_firmware, Wtc\-300hwh_firmware, Wtc\-C1167gc\-B_firmware, Wtc\-C1167gc\-W_firmware | 6.1 | ||
| 2023-07-13 | CVE-2023-37560 | Cross-site scripting vulnerability in WRH-300WH-H v2.12 and earlier, and WTC-300HWH v1.09 and earlier allows a remote unauthenticated attacker to inject an arbitrary script. | Wrh\-300wh\-H_firmware, Wtc\-300hwh_firmware | 6.1 |