Skip to main content

Bs Gs2016 Firmware

3 CVEs product

Monthly

CVE-2023-26588 HIGH PATCH This Week

Use of hard-coded credentials vulnerability in Buffalo network devices allows an attacker to access the debug function of the product. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Exposure of Resource to Wrong Sphere vulnerability could allow attackers to access resources from an unintended security context.

Information Disclosure Bs Gsl2024 Firmware Bs Gsl2016P Firmware Bs Gsl2016 Firmware Bs Gs2008 Firmware +12
NVD
CVSS 3.1
7.5
EPSS
0.6%
CVE-2023-24544 HIGH PATCH This Week

Improper access control vulnerability in Buffalo network devices allows a network-adjacent attacker to obtain specific files of the product. Rated high severity (CVSS 8.1), this vulnerability is no authentication required, low attack complexity.

Authentication Bypass Bs Gsl2024 Firmware Bs Gsl2016P Firmware Bs Gsl2016 Firmware Bs Gs2008 Firmware +8
NVD
CVSS 3.1
8.1
EPSS
0.3%
CVE-2023-24464 MEDIUM PATCH This Month

Stored-cross-site scripting vulnerability in Buffalo network devices allows an attacker with access to the web management console of the product to execute arbitrary JavaScript on a legitimate user's. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Bs Gs2008 Firmware Bs Gs2016 Firmware Bs Gs2024 Firmware Bs Gs2048 Firmware +3
NVD
CVSS 3.1
5.4
EPSS
0.4%
EPSS 1% CVSS 7.5
HIGH PATCH This Week

Use of hard-coded credentials vulnerability in Buffalo network devices allows an attacker to access the debug function of the product. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Exposure of Resource to Wrong Sphere vulnerability could allow attackers to access resources from an unintended security context.

Information Disclosure Bs Gsl2024 Firmware Bs Gsl2016P Firmware +14
NVD
EPSS 0% CVSS 8.1
HIGH PATCH This Week

Improper access control vulnerability in Buffalo network devices allows a network-adjacent attacker to obtain specific files of the product. Rated high severity (CVSS 8.1), this vulnerability is no authentication required, low attack complexity.

Authentication Bypass Bs Gsl2024 Firmware Bs Gsl2016P Firmware +10
NVD
EPSS 0% CVSS 5.4
MEDIUM PATCH This Month

Stored-cross-site scripting vulnerability in Buffalo network devices allows an attacker with access to the web management console of the product to execute arbitrary JavaScript on a legitimate user's. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Bs Gs2008 Firmware Bs Gs2016 Firmware +5
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy