CVE-2025-46267

July 22, 2025 invoker category_cve

CVE Details

Basic Information

Title CVE-2025-46267
Type cve
Published 2025-07-22T09:30:21.865Z
Modified 2025-07-22T09:30:21.865Z

Product Information

Vendor ELECOM CO.,LTD.
Product WRC-BE36QS-B
Version v1.1.3 and earlier

CVSS Information

Base Score 4.9 (MEDIUM)
Attack Vector CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N

Affected Products

  • ELECOM CO.,LTD. WRC-BE36QS-B v1.1.3 and earlier
  • ELECOM CO.,LTD. WRC-W701-B v1.1.3 and earlier

Additional Information

CWE List CWE-912
Source jpcert

Description

Hidden functionality issue exists in WRC-BE36QS-B and WRC-W701-B. If exploited, the product’s hidden debug function may be enabled by a remote attacker who can log in to WebGUI.

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.