CVE-2024-29225 | THREATINT

Description

ELECOM wireless LAN routers allow a network-adjacent unauthenticated attacker to obtain the configuration file containing sensitive information by sending a specially crafted request.

PUBLISHED Reserved 2024-03-19 | Published 2024-04-04 | Updated 2026-05-12 | Assigner jpcert

Problem types

Information disclosure

Product status

v1.25 and earlier

affected

v1.24 and earlier

affected

v1.42 and earlier

affected

v1.42 and earlier

affected

v1.42 and earlier

affected

References

www.elecom.co.jp/news/security/20240326-01/

jvn.jp/en/vu/JVNVU95381465/

www.elecom.co.jp/news/security/20240326-01/

jvn.jp/en/vu/JVNVU95381465/

cve.org (CVE-2024-29225)

nvd.nist.gov (CVE-2024-29225)

Download JSON