CVE-2026-24449

Awaiting Analysis Awaiting Analysis - Queue

BaseFortify

Publication date: 2026-02-03

Last updated on: 2026-04-10

Assigner: JPCERT/CC

Description

For WRC-X1500GS-B and WRC-X1500GSA-B, the initial passwords can be calculated easily from the system information.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published

2026-02-03

Last Modified

2026-04-10

Generated

2026-06-16

AI Q&A

2026-02-03

EPSS Evaluated

2026-06-14

NVD

CVE-2026-24449

EUVD

EUVD-2026-5271

Affected Vendors & Products

Vendor	Product	Version / Range
elecom	wrc-x1500gsa-b_firmware	*
elecom	wrc-x1500gs-b_firmware	*

Helpful Resources

Exploitability

CWE

KEV

CWE ID	Description
CWE-1391	The product uses weak credentials (such as a default key or hard-coded password) that can be calculated, derived, reused, or guessed by an attacker.

Attack-Flow Graph

Executive Summary

This vulnerability affects the WRC-X1500GS-B and WRC-X1500GSA-B devices, where the initial passwords can be easily calculated from the system information, potentially allowing unauthorized access.

Impact Analysis

Because the initial passwords can be easily derived, an attacker with access to system information could gain unauthorized access to the affected devices, compromising confidentiality but not integrity or availability.

Compliance Impact

I don't know

Detection Guidance

I don't know

Mitigation Strategies

I don't know

Hi! I’m here to help you understand CVE-2026-24449. Ask me anything about the vulnerability, its impact, or mitigation strategies.

0/70

CVE-2026-24449

BaseFortify

Description

CVSS Scores

EPSS Scores

Meta Information

Affected Vendors & Products

Helpful Resources

Exploitability

Attack-Flow Graph

AI Quick Actions

Chat Assistant

EPSS Chart