CVE Catalog

CVE-2026-40621

Critical
Published: Translated: NVD NIST

Summary

ELECOM wireless LAN access point devices do not require authentication to access some specific URLs. The affected product may be operated without authentication.

Risk Assessment

The lack of authentication requirement poses a risk of unauthorized access to the device, potentially leading to network security breaches.

Recommendation

It is recommended to configure devices to require authentication for access to all URLs and to regularly update the firmware.

Original NVD description (English source)

ELECOM wireless LAN access point devices do not require authentication to access some specific URLs. The affected product may be operated without authentication.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS