← back
CVE-2023-37560

CVE-2023-37560

EPSS 0.4%
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 0.4%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
13 Jul 2023Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Cross-site scripting vulnerability in WRH-300WH-H v2.12 and earlier, and WTC-300HWH v1.09 and earlier allows a remote unauthenticated attacker to inject an arbitrary script.
Affected products
ELECOM CO.,LTD. · WRH-300WH-HELECOM CO.,LTD. · WTC-300HWH

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://jvn.jp/en/jp/JVN05223215/https://www.elecom.co.jp/news/security/20230711-01/