CNNVD-202506-3059 Information

CNNVD ID

CNNVD-202506-3059

Related CVE

CVE-2025-48890

• CNNVD Published: 2025-06-24

Description (Chinese)

Elecom WRH-733GBK和Elecom WRH-733GWH都是日本Elecom公司的一款便携式路由器。 Elecom WRH-733GBK和Elecom WRH-733GWH存在操作系统命令注入漏洞，该漏洞源于miniigd SOAP服务中对特殊元素中和不当，可能导致OS命令注入攻击。

Description (English)

Elecom WRH-733GBK and Elecom WRH-733GH are all portable routers of the Japanese company Elecom. Elecom WRH-733GBK and Elecom WRH-733GWH have incorporated a loophole in their operating system commands, which stems from the misalignment of special elements in their miniigd SOAP services, which may lead to an OS command injection attack.

Hazard Level

Low

Vulnerability Type

操作系统命令注入

Affected Vendor

ELECOM

Published

2025-06-24

Last Modified

2026-02-24

References

https://jvn.jp/en/jp/JVN39435597/ https://www.elecom.co.jp/news/security/20250624-02/ https://access.redhat.com/security/cve/cve-2025-48890

Patch

https://www.elecom.co.jp/news/security/20250624-02/