CVE-2026-42950

MEDIUM NVD

CVSS Score 4.3

Severity MEDIUM

Published May 13, 2026

Vendor unknown

Description

ELECOM wireless LAN access point devices do not check if language parameter has an appropriate value. If a user views a malicious page while logged in, the admin page on the user's web browser may become broken.

References

https://jvn.jp/en/jp/JVN03037325/
https://www.elecom.co.jp/news/security/20260512-01/