CVE-2026-42961
Severity CVSS v4.0:
MEDIUM
Type:
Unavailable / Other
Publication date:
13/05/2026
Last modified:
13/05/2026
Description
ELECOM wireless LAN access point devices implement CSRF protection mechanism, but with inadequate handling of CSRF tokens. If a user views a malicious page while logged in, the user may be tricked to do unintended operations.
Impact
Base Score 4.0
5.10
Severity 4.0
MEDIUM
Base Score 3.x
4.30
Severity 3.x
MEDIUM



