Description
Stack-based buffer overflow vulnerability exists in ELECOM wireless LAN access point devices. A crafted packet may lead to arbitrary code execution.
Published: 2026-02-03
Score: 9.3 Critical
EPSS: < 1% Very Low
KEV: No
Impact: Remote Code Execution
Action: Immediate Patch
AI Analysis

Impact

This vulnerability is a stack‑based buffer overflow that can be triggered by a specially crafted packet. When the overflow occurs, an attacker may gain arbitrary code execution on the wireless LAN access point. The weakness is a classic stack corruption flaw (CWE‑121).

Affected Systems

The flaw affects Elecom wireless LAN access‑point models WAB‑S300IW‑AC, WAB‑S300IW‑PD, WAB‑S300IW2‑PD, WAB‑S733IW‑AC, WAB‑S733IW‑PD, and WAB‑S733IW2‑PD, including their firmware images.

Risk and Exploitability

The CVSS base score of 9.3 marks it as critical, but the EPSS score of less than 1% indicates that few exploits are observed or that the confidence in exploitation is low. It is not listed in the CISA KEV catalog. Attackers would need to send the crafted packet from the network to the device, suggesting a network‑based attack vector. The high severity and the ability to execute arbitrary code make it a top‑priority risk for exposed network interfaces.

Generated by OpenCVE AI on April 18, 2026 at 00:23 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Install the latest firmware update released by Elecom for all affected WAB‑S300IW and WAB‑S733IW access points
  • If a patch is not yet available, isolate the access points from untrusted networks or place them in a segmented VLAN to reduce exposure
  • Configure network perimeter firewalls or IDS/IPS solutions to drop anomalous packets that could trigger the buffer overflow

Generated by OpenCVE AI on April 18, 2026 at 00:23 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Sat, 18 Apr 2026 00:45:00 +0000

Type Values Removed Values Added
Title Stack‑Based Buffer Overflow in Elecom Wireless LAN Access Points Enables Arbitrary Code Execution

Tue, 14 Apr 2026 13:00:00 +0000

Type Values Removed Values Added
First Time appeared Elecom wab-s300iw-ac Firmware
Elecom wab-s300iw-pd Firmware
Elecom wab-s300iw2-pd Firmware
Elecom wab-s733iw-ac Firmware
Elecom wab-s733iw-pd Firmware
Elecom wab-s733iw2-pd Firmware
Elecom wrc-x1500gs-b
Elecom wrc-x1500gs-b Firmware
Elecom wrc-x1500gsa-b
Elecom wrc-x1500gsa-b Firmware
CPEs cpe:2.3:h:elecom:wab-s300iw-ac:*:*:*:*:*:*:*:*
cpe:2.3:h:elecom:wab-s300iw-pd:*:*:*:*:*:*:*:*
cpe:2.3:h:elecom:wab-s300iw2-pd:*:*:*:*:*:*:*:*
cpe:2.3:h:elecom:wab-s733iw-ac:*:*:*:*:*:*:*:*
cpe:2.3:h:elecom:wab-s733iw-pd:*:*:*:*:*:*:*:*
cpe:2.3:h:elecom:wab-s733iw2-pd:*:*:*:*:*:*:*:*
cpe:2.3:h:elecom:wrc-x1500gs-b:*:*:*:*:*:*:*:*
cpe:2.3:h:elecom:wrc-x1500gsa-b:*:*:*:*:*:*:*:*
cpe:2.3:o:elecom:wab-s300iw-ac_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:elecom:wab-s300iw-pd_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:elecom:wab-s300iw2-pd_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:elecom:wab-s733iw-ac_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:elecom:wab-s733iw-pd_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:elecom:wab-s733iw2-pd_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:elecom:wrc-x1500gs-b_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:elecom:wrc-x1500gsa-b_firmware:*:*:*:*:*:*:*:*
Vendors & Products Elecom wab-s300iw-ac Firmware
Elecom wab-s300iw-pd Firmware
Elecom wab-s300iw2-pd Firmware
Elecom wab-s733iw-ac Firmware
Elecom wab-s733iw-pd Firmware
Elecom wab-s733iw2-pd Firmware
Elecom wrc-x1500gs-b
Elecom wrc-x1500gs-b Firmware
Elecom wrc-x1500gsa-b
Elecom wrc-x1500gsa-b Firmware

Wed, 04 Feb 2026 12:15:00 +0000

Type Values Removed Values Added
First Time appeared Elecom
Elecom wab-s300iw-ac
Elecom wab-s300iw-pd
Elecom wab-s300iw2-pd
Elecom wab-s733iw-ac
Elecom wab-s733iw-pd
Elecom wab-s733iw2-pd
Vendors & Products Elecom
Elecom wab-s300iw-ac
Elecom wab-s300iw-pd
Elecom wab-s300iw2-pd
Elecom wab-s733iw-ac
Elecom wab-s733iw-pd
Elecom wab-s733iw2-pd

Tue, 03 Feb 2026 16:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Tue, 03 Feb 2026 13:15:00 +0000

Type Values Removed Values Added
Description Stack-based buffer overflow vulnerability exists in ELECOM wireless LAN access point devices. A crafted packet may lead to arbitrary code execution.
Weaknesses CWE-121
References
Metrics cvssV3_0

{'score': 9.8, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}

cvssV4_0

{'score': 9.3, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N'}

Subscriptions

Elecom Wab-s300iw-ac Wab-s300iw-ac Firmware Wab-s300iw-pd Wab-s300iw-pd Firmware Wab-s300iw2-pd Wab-s300iw2-pd Firmware Wab-s733iw-ac Wab-s733iw-ac Firmware Wab-s733iw-pd Wab-s733iw-pd Firmware Wab-s733iw2-pd Wab-s733iw2-pd Firmware Wrc-x1500gs-b Wrc-x1500gs-b Firmware Wrc-x1500gsa-b Wrc-x1500gsa-b Firmware
cve-icon MITRE

Status: PUBLISHED

Assigner: jpcert

Published:

Updated: 2026-02-03T15:47:24.584Z

Reserved: 2026-01-30T01:42:43.398Z

Link: CVE-2026-24465

cve-icon Vulnrichment

Updated: 2026-02-03T15:47:20.792Z

cve-icon NVD

Status : Analyzed

Published: 2026-02-03T07:16:13.127

Modified: 2026-04-14T12:59:18.737

Link: CVE-2026-24465

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-18T00:30:25Z

Weaknesses