Use of Weak Credentials in WRC-X1500GS-B and WRC-X1500GSA-B - CVE-2026-24449
Published: February 3, 2026
Vulnerability identifier: #VU122248
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2026-24449
CWE-ID: CWE-1391
Exploitation vector: Local access
Exploit availability:
No public exploit available
Vendor: ELECOM CO. ,LTD.
Affected software:
WRC-X1500GS-B
WRC-X1500GSA-B
WRC-X1500GS-B
WRC-X1500GSA-B
Detailed vulnerability description
The vulnerability allows a local attacker to compromise the target system.
The vulnerability exists due to use of weak credentials. An attacker with physical access can calculate initial passwords on the system.
How to mitigate CVE-2026-24449
Cybersecurity Help is currently unaware of any official solution to address this vulnerability.