Buffalo WCR-1166DS devices with firmware 1.30 and earlier allow an attacker to execute arbitrary OS commands via unspecified vectors.
oryginał ENCVSS Vector
CVSS:3.0/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:HBuffalo Wcr 1166ds
HWBuffalowszystkie wersjeBuffalo Wcr 1166ds Firmware
OSBuffalo1.30
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
Command Injection
CWE
Powiązane podatności
CVE-2022-43443HIGH8.8ten sam produkt
OS command injection vulnerability in Buffalo network devices allows an network-adjacent attacker to execute a...
CVE-2024-26023MEDIUM4.2ten sam produkt
OS command injection vulnerability in BUFFALO wireless LAN routers allows a logged-in user to execute arbitrar...
CVE-2022-43486MEDIUM6.8ten sam produkt
Hidden functionality vulnerability in Buffalo network devices allows a network-adjacent attacker with an admin...
CVE-2021-20090CRITICAL9.8⚠ KEVten sam vendor
A path traversal vulnerability in the web interfaces of Buffalo WSR-2533DHPL2 firmware version <= 1.02 and WSR...
CVE-2026-45777CRITICAL9.3PL ✓ten sam vendor
RCE poprzez command injection w Open XDMoD (wersje 9.5.0–11.0.2)