Skip to main content

Wsr 2533Dhp Firmware

4 CVEs product

Monthly

CVE-2024-26023 MEDIUM This Month

OS command injection vulnerability in BUFFALO wireless LAN routers allows a logged-in user to execute arbitrary OS commands. Rated medium severity (CVSS 4.2), this vulnerability is low attack complexity. No vendor patch available.

Command Injection Wsr 2533Dhp Firmware Wsr 2533Dhpl Firmware Wsr 2533Dhp2 Firmware Wsr A2533Dhp2 Firmware +3
NVD
CVSS 3.1
4.2
EPSS
0.5%
CVE-2024-23486 CRITICAL Act Now

Plaintext storage of a password issue exists in BUFFALO wireless LAN routers, which may allow a network-adjacent unauthenticated attacker with access to the product's login page may obtain configured. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Wsr 2533Dhp Firmware Wsr 2533Dhpl Firmware Wsr 2533Dhp2 Firmware Wsr A2533Dhp2 Firmware
NVD
CVSS 3.1
9.8
EPSS
0.6%
CVE-2022-43486 MEDIUM This Month

Hidden functionality vulnerability in Buffalo network devices allows a network-adjacent attacker with an administrative privilege to enable the debug functionalities and execute an arbitrary command. Rated medium severity (CVSS 6.8), this vulnerability is low attack complexity. No vendor patch available.

RCE Code Injection Wsr 3200Ax4S Firmware Wsr 3200Ax4B Firmware Wsr 2533Dhp2 Firmware +10
NVD
CVSS 3.1
6.8
EPSS
0.4%
CVE-2022-43443 HIGH This Week

OS command injection vulnerability in Buffalo network devices allows an network-adjacent attacker to execute an arbitrary OS command if a specially crafted request is sent to the management page. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Command Injection Wsr 3200Ax4S Firmware Wsr 3200Ax4B Firmware Wsr 2533Dhp2 Firmware Wsr A2533Dhp2 Firmware +7
NVD
CVSS 3.1
8.8
EPSS
0.8%
EPSS 1% CVSS 4.2
MEDIUM This Month

OS command injection vulnerability in BUFFALO wireless LAN routers allows a logged-in user to execute arbitrary OS commands. Rated medium severity (CVSS 4.2), this vulnerability is low attack complexity. No vendor patch available.

Command Injection Wsr 2533Dhp Firmware Wsr 2533Dhpl Firmware +5
NVD
EPSS 1% CVSS 9.8
CRITICAL Act Now

Plaintext storage of a password issue exists in BUFFALO wireless LAN routers, which may allow a network-adjacent unauthenticated attacker with access to the product's login page may obtain configured. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Wsr 2533Dhp Firmware Wsr 2533Dhpl Firmware +2
NVD
EPSS 0% CVSS 6.8
MEDIUM This Month

Hidden functionality vulnerability in Buffalo network devices allows a network-adjacent attacker with an administrative privilege to enable the debug functionalities and execute an arbitrary command. Rated medium severity (CVSS 6.8), this vulnerability is low attack complexity. No vendor patch available.

RCE Code Injection Wsr 3200Ax4S Firmware +12
NVD
EPSS 1% CVSS 8.8
HIGH This Week

OS command injection vulnerability in Buffalo network devices allows an network-adjacent attacker to execute an arbitrary OS command if a specially crafted request is sent to the management page. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Command Injection Wsr 3200Ax4S Firmware Wsr 3200Ax4B Firmware +9
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy