CVE-2024-26258 Information

Description

OS command injection vulnerability in WRC-X3200GST3-B v1.25 and earlier and WRC-G01-W v1.24 and earlier allows a network-adjacent attacker with credentials to execute arbitrary OS commands by sending a specially crafted request to the product.

Reference

https://www.elecom.co.jp/news/security/20240326-01/ https://jvn.jp/en/vu/JVNVU95381465/