CVE-2026-24465
Unknown
Unknown - Not Provided
Stack-Based Buffer Overflow in ELECOM WLAN AP Enables Code Execution
Publication date: 2026-02-03
Last updated on: 2026-04-14
Assigner: JPCERT/CC
Description
Description
Stack-based buffer overflow vulnerability exists in ELECOM wireless LAN access point devices. A crafted packet may lead to arbitrary code execution.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| elecom | wab-s300iw-pd_firmware | * |
| elecom | wab-s733iw-pd_firmware | * |
| elecom | wrc-x1500gsa-b_firmware | to 1.13 (exc) |
| elecom | wrc-x1500gs-b_firmware | to 1.13 (exc) |
| elecom | wab-s300iw2-pd_firmware | to 5.5.02 (exc) |
| elecom | wab-s300iw-ac_firmware | to 5.5.02 (exc) |
| elecom | wab-s733iw2-pd_firmware | to 5.5.02 (exc) |
| elecom | wab-s733iw-ac_firmware | to 5.5.02 (exc) |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-121 | A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function). |
