OS command injection vulnerability in BUFFALO wireless LAN routers allows a logged-in user to execute arbitrary OS commands.
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:LBuffalo Wcr 1166ds
HWBuffalowszystkie wersjeBuffalo Wcr 1166ds Firmware
OSBuffalo< 1.33Buffalo Wsr 1166dhp
HWBuffalowszystkie wersjeBuffalo Wsr 1166dhp2
HWBuffalowszystkie wersjeBuffalo Wsr 1166dhp2 Firmware
OSBuffalo< 1.15Buffalo Wsr 1166dhp Firmware
OSBuffalo< 1.15Buffalo Wsr 2533dhp
HWBuffalowszystkie wersjeBuffalo Wsr 2533dhp2
HWBuffalowszystkie wersjeBuffalo Wsr 2533dhp2 Firmware
OSBuffalo< 1.11Buffalo Wsr 2533dhp Firmware
OSBuffalo< 1.07Buffalo Wsr 2533dhpl
HWBuffalowszystkie wersjeBuffalo Wsr 2533dhpl Firmware
OSBuffalo< 1.07Buffalo Wsr A2533dhp2
HWBuffalowszystkie wersjeBuffalo Wsr A2533dhp2 Firmware
OSBuffalo< 1.11
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Command Injection
CWE
Related vulnerabilities
CVE-2024-23486CRITICAL9.8PL ✓ten sam produkt
Buffalo WSR-2533DHP — hasło przechowywane w postaci jawnej (plaintext)
CVE-2022-43443HIGH8.8ten sam produkt
OS command injection vulnerability in Buffalo network devices allows an network-adjacent attacker to execute a...
CVE-2022-43466MEDIUM6.8ten sam produkt
OS command injection vulnerability in Buffalo network devices allows a network-adjacent attacker with an admin...
CVE-2022-43486MEDIUM6.8ten sam produkt
Hidden functionality vulnerability in Buffalo network devices allows a network-adjacent attacker with an admin...
CVE-2017-10811MEDIUM6.8ten sam produkt
Buffalo WCR-1166DS devices with firmware 1.30 and earlier allow an attacker to execute arbitrary OS commands v...