Show filters
5 Total Results
Displaying 1-5 of 5
Sort by:
Attacker Value
Unknown

CVE-2024-26023

Disclosure Date: April 15, 2024 (last updated April 15, 2024)
OS command injection vulnerability in BUFFALO wireless LAN routers allows a logged-in user to execute arbitrary OS commands.
0
0
Attacker Value
Unknown

CVE-2024-23486

Disclosure Date: April 15, 2024 (last updated April 15, 2024)
Plaintext storage of a password issue exists in BUFFALO wireless LAN routers, which may allow a network-adjacent unauthenticated attacker with access to the product's login page may obtain configured credentials.
0
0
Attacker Value
Unknown

CVE-2022-43486

Disclosure Date: December 19, 2022 (last updated February 14, 2024)
Hidden functionality vulnerability in Buffalo network devices allows a network-adjacent attacker with an administrative privilege to enable the debug functionalities and execute an arbitrary command on the affected devices.
Attack Vector: Adjacent NetworkPrivileges: HighUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2022-43466

Disclosure Date: December 19, 2022 (last updated February 14, 2024)
OS command injection vulnerability in Buffalo network devices allows a network-adjacent attacker with an administrative privilege to execute an arbitrary OS command if a specially crafted request is sent to a specific CGI program.
Attack Vector: Adjacent NetworkPrivileges: HighUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2022-43443

Disclosure Date: December 19, 2022 (last updated February 14, 2024)
OS command injection vulnerability in Buffalo network devices allows an network-adjacent attacker to execute an arbitrary OS command if a specially crafted request is sent to the management page.
Attack Vector: Adjacent NetworkPrivileges: NoneUser Interaction: None
0
0