Vulnerability Description
ELECOM LAN routers (WRC-2533GST2 firmware versions prior to v1.14, WRC-1900GST2 firmware versions prior to v1.14, WRC-1750GST2 firmware versions prior to v1.14, and WRC-1167GST2 firmware versions prior to v1.10) allow an attacker on the same network segment to execute arbitrary OS commands with a root privilege via unspecified vectors.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Elecom | Wrc-2533Gst2 Firmware | < 1.14 |
| Elecom | Wrc-2533Gst2 | - |
| Elecom | Wrc-1900Gst2 Firmware | < 1.14 |
| Elecom | Wrc-1900Gst2 | - |
| Elecom | Wrc-1750Gst2 Firmware | < 1.14 |
| Elecom | Wrc-1750Gst2 | - |
| Elecom | Wrc-1167Gst2 Firmware | < 1.10 |
| Elecom | Wrc-1167Gst2 | - |
References
- https://jvn.jp/en/jp/JVN82892096/index.htmlThird Party Advisory
- https://www.elecom.co.jp/news/security/20201005-01/Vendor Advisory
- https://jvn.jp/en/jp/JVN82892096/index.htmlThird Party Advisory
- https://www.elecom.co.jp/news/security/20201005-01/Vendor Advisory
FAQ
What is CVE-2020-5634?
CVE-2020-5634 is a vulnerability with a CVSS score of 8.8 (HIGH). ELECOM LAN routers (WRC-2533GST2 firmware versions prior to v1.14, WRC-1900GST2 firmware versions prior to v1.14, WRC-1750GST2 firmware versions prior to v1.14, and WRC-1167GST2 firmware versions prio...
How severe is CVE-2020-5634?
CVE-2020-5634 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-5634?
Check the references section above for vendor advisories and patch information. Affected products include: Elecom Wrc-2533Gst2 Firmware, Elecom Wrc-2533Gst2, Elecom Wrc-1900Gst2 Firmware, Elecom Wrc-1900Gst2, Elecom Wrc-1750Gst2 Firmware.