Analysis
Analysis and contextual insights are available on OpenCVE Cloud.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| ELECOM CO.,LTD. | WRC-X1500GS-B | affected |
|
||||||
| ELECOM CO.,LTD. | WRC-X1500GSA-B | affected |
|
||||||
| ELECOM CO.,LTD. | WRC-X3000GS2-B | affected |
|
||||||
| ELECOM CO.,LTD. | WRC-X3000GS2-W | affected |
|
||||||
| ELECOM CO.,LTD. | WRC-X3000GS2A-B | affected |
|
||||||
| ELECOM CO.,LTD. | WRC-X3000GST2-B | affected |
|
||||||
| ELECOM CO.,LTD. | WRC-X1800GS-B | affected |
|
||||||
| ELECOM CO.,LTD. | WRC-X1800GSA-B | affected |
|
||||||
| ELECOM CO.,LTD. | WRC-X1800GSH-B | affected |
|
||||||
| ELECOM CO.,LTD. | WRC-X6000QS-G | affected |
|
||||||
| ELECOM CO.,LTD. | WRC-X6000QSA-G | affected |
|
||||||
| ELECOM CO.,LTD. | WRC-X6000XS-G | affected |
|
||||||
| ELECOM CO.,LTD. | WRC-X6000XST-G | affected |
|
||||||
| ELECOM CO.,LTD. | WRC-XE5400GS-G | affected |
|
||||||
| ELECOM CO.,LTD. | WRC-XE5400GSA-G | affected |
|
No data.
No data.
| Vendor | Product | Confidence | Versions |
|---|---|---|---|
| Elecom | Wrc-x1500gs-b | — | — |
| Elecom | Wrc-x1500gsa-b | — | — |
Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
No advisories yet.
Tue, 12 May 2026 11:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Cross‑Site Request Forgery Enabling Unintended Operations on WRC‑X1500GS‑B and WRC‑X1500GSA‑B |
Tue, 12 May 2026 08:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Cross-site request forgery vulnerability exists in WRC-X1500GS-B and WRC-X1500GSA-B. If a user accesses a malicious page while logged-in to the affected product, unintended operations may be performed. | Cross-site request forgery vulnerability exists in ELECOM wireless LAN products. If a user accesses a malicious page while logged-in to the affected product, unintended operations may be performed. |
Sat, 18 Apr 2026 00:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Cross‑Site Request Forgery Enabling Unintended Operations on WRC‑X1500GS‑B and WRC‑X1500GSA‑B |
Wed, 04 Feb 2026 12:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Elecom
Elecom wrc-x1500gs-b Elecom wrc-x1500gsa-b |
|
| Vendors & Products |
Elecom
Elecom wrc-x1500gs-b Elecom wrc-x1500gsa-b |
Tue, 03 Feb 2026 16:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Tue, 03 Feb 2026 13:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Cross-site request forgery vulnerability exists in WRC-X1500GS-B and WRC-X1500GSA-B. If a user accesses a malicious page while logged-in to the affected product, unintended operations may be performed. | |
| Weaknesses | CWE-352 | |
| References |
| |
| Metrics |
cvssV3_0
|
MITRE
Status: PUBLISHED
Assigner: jpcert
Published:
Updated: 2026-05-12T08:09:07.849Z
Reserved: 2026-01-30T01:42:47.600Z
Link: CVE-2026-20704
Vulnrichment
Updated: 2026-02-03T15:56:22.686Z
NVD
Status : Deferred
Published: 2026-02-03T07:16:12.503
Modified: 2026-05-12T09:16:17.930
Link: CVE-2026-20704
Redhat
No data.
OpenCVE Enrichment
Updated: 2026-05-12T11:15:14Z