CNNVD-202506-3056 Information

CNNVD ID

CNNVD-202506-3056

Related CVE

CVE-2025-41427

• CNNVD Published: 2025-06-24

Description (Chinese)

Elecom WRC-X3000GS等都是日本Elecom公司的一款路由器。 Elecom WRC-X3000GS、Elecom WRC-X3000GSA和Elecom WRC-X3000GSN存在操作系统命令注入漏洞，该漏洞源于Connection Diagnostics页面命令注入导致任意OS命令执行。

Description (English)

Elecom WRC-X3000GS and others are all routers of the Japanese company Elecom. Elecom WRC-X3000GS, Elecom WRC-X3000GSA and Elecom WRC-X3000GSN have an operational system command leak that originates from the input of Connaction Diagnostics’ commands, which results in the execution of arbitrary OS orders.

Hazard Level

Medium

Vulnerability Type

操作系统命令注入

Affected Vendor

ELECOM

Published

2025-06-24

Last Modified

2026-02-24

References

https://jvn.jp/en/jp/JVN39435597/ https://www.elecom.co.jp/news/security/20250624-01/ https://access.redhat.com/security/cve/cve-2025-41427

Patch

https://www.elecom.co.jp/news/security/20250624-01/