{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-21T21:46:22.765","vulnerabilities":[{"cve":{"id":"CVE-2023-37567","sourceIdentifier":"vultures@jpcert.or.jp","published":"2023-07-13T02:15:09.563","lastModified":"2026-06-17T06:08:28.510","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Command injection vulnerability in ELECOM and LOGITEC wireless LAN routers allows a remote unauthenticated attacker to execute an arbitrary command by sending a specially crafted request to a certain port of the web management page. Affected products and versions are as follows: WRC-1167GHBK3-A v1.24 and earlier, WRC-F1167ACF2 all versions, WRC-600GHBK-A all versions, WRC-733FEBK2-A all versions, WRC-1467GHBK-A all versions, WRC-1900GHBK-A all versions, and LAN-W301NR all versions."}],"affected":[{"source":"vultures@jpcert.or.jp","affectedData":[{"vendor":"ELECOM CO.,LTD.","product":"WRC-1167GHBK3-A","versions":[{"version":"v1.24 and earlier ","status":"affected"}]},{"vendor":"ELECOM CO.,LTD.","product":"WRC-F1167ACF2","versions":[{"version":"all versions ","status":"affected"}]},{"vendor":"ELECOM CO.,LTD.","product":"WRC-600GHBK-A","versions":[{"version":"all versions ","status":"affected"}]},{"vendor":"ELECOM CO.,LTD.","product":"WRC-733FEBK2-A","versions":[{"version":"all versions ","status":"affected"}]},{"vendor":"ELECOM CO.,LTD.","product":"WRC-1467GHBK-A","versions":[{"version":"all versions ","status":"affected"}]},{"vendor":"ELECOM CO.,LTD.","product":"WRC-1900GHBK-A","versions":[{"version":"all versions ","status":"affected"}]},{"vendor":"LOGITEC CORPORATION","product":"LAN-W301NR","versions":[{"version":"all versions","status":"affected"}]}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","affectedData":[{"vendor":"elecom","product":"wrc-1167ghbk3-a","defaultStatus":"unknown","cpes":["cpe:2.3:h:elecom:wrc-1167ghbk3-a:-:*:*:*:*:*:*:*"],"versions":[{"version":"0","lessThanOrEqual":"1.24","versionType":"custom","status":"affected"}]},{"vendor":"elecom","product":"wrc-f1167acf2","defaultStatus":"unknown","cpes":["cpe:2.3:h:elecom:wrc-f1167acf2:-:*:*:*:*:*:*:*"],"versions":[{"version":"0","lessThan":"*","versionType":"custom","status":"affected"}]},{"vendor":"elecom","product":"wrc-600ghbk-a","defaultStatus":"unknown","cpes":["cpe:2.3:h:elecom:wrc-600ghbk-a:-:*:*:*:*:*:*:*"],"versions":[{"version":"0","lessThan":"*","versionType":"custom","status":"affected"}]},{"vendor":"elecom","product":"wrc-733febk2-a","defaultStatus":"unknown","cpes":["cpe:2.3:h:elecom:wrc-733febk2-a:-:*:*:*:*:*:*:*"],"versions":[{"version":"0","lessThan":"*","versionType":"custom","status":"affected"}]},{"vendor":"elecom","product":"wrc-1467ghbk-a","defaultStatus":"unknown","cpes":["cpe:2.3:h:elecom:wrc-1467ghbk-a:-:*:*:*:*:*:*:*"],"versions":[{"version":"0","lessThan":"*","versionType":"custom","status":"affected"}]},{"vendor":"elecom","product":"wrc-1900ghbk-a","defaultStatus":"unknown","cpes":["cpe:2.3:h:elecom:wrc-1900ghbk-a:-:*:*:*:*:*:*:*"],"versions":[{"version":"0","lessThan":"*","versionType":"custom","status":"affected"}]},{"vendor":"elecom","product":"lan-w301nr","defaultStatus":"unknown","cpes":["cpe:2.3:h:elecom:lan-w301nr:-:*:*:*:*:*:*:*"],"versions":[{"version":"0","lessThan":"*","versionType":"custom","status":"affected"}]}]}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}],"ssvcV203":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","ssvcData":{"timestamp":"2024-11-06T14:23:25.188680Z","id":"CVE-2023-37567","options":[{"exploitation":"none"},{"automatable":"yes"},{"technicalImpact":"total"}],"role":"CISA Coordinator","version":"2.0.3"}}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-77"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:elecom:wrc-1167ghbk3-a_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"1.24","matchCriteriaId":"CDA47F4E-73D6-4F96-8EF4-8896701F6990"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:elecom:wrc-1167ghbk3-a:-:*:*:*:*:*:*:*","matchCriteriaId":"C6248727-0D48-44DA-A44A-87FD71ECEDA6"}]}]}],"references":[{"url":"https://jvn.jp/en/vu/JVNVU91850798/","source":"vultures@jpcert.or.jp","tags":["Third Party Advisory"]},{"url":"https://www.elecom.co.jp/news/security/20230711-01/","source":"vultures@jpcert.or.jp","tags":["Vendor Advisory"]},{"url":"https://www.elecom.co.jp/news/security/20230810-01/","source":"vultures@jpcert.or.jp"},{"url":"https://jvn.jp/en/vu/JVNVU91850798/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.elecom.co.jp/news/security/20230711-01/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"https://www.elecom.co.jp/news/security/20230810-01/","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}