CVE-2021-20649

ELECOM WRC-300FEBK-S contains an improper certificate validation vulnerability. Via a man-in-the-middle attack, an attacker may alter the communication response. As a result, an arbitrary OS command may be executed on the affected device.
References
Configurations

Configuration 1


Information

Published : 2021-02-12 07:15

Updated : 2021-02-15 01:26


NVD link : CVE-2021-20649

Mitre link : CVE-2021-20649

Products Affected
No products.
CWE
CWE-295

Improper Certificate Validation