Search

Find a vulnerability

Search criteria Use this form to refine search results.
Full-text search supports keyword queries with ranking and filtering.
You can combine vendor, product, and sources to narrow results.
Enable “Apply ordering” to sort by date instead of relevance.

    138 vulnerabilities by BUFFALO INC.

    JVNDB-2026-000046

    Vulnerability from jvndb - Published: 2026-03-27 17:18 - Updated:2026-03-27 17:18
    Severity
    Summary
    Multiple vulnerabilities in BUFFALO Wi-Fi routers
    Details
    Wi-Fi router products provided by BUFFALO INC. contain multiple vulnerabilities listed below.
    • Dependency on vulnerable third-party component (CWE-1395) - This issue is caused by a vulnerability in mini_httpd (CVE-2015-1548).
    • OS command injection (CWE-78) - CVE-2026-27650
    • Code injection (CWE-94) - CVE-2026-32669
    • Authentication bypass using an alternate path or channel (CWE-288) - CVE-2026-32678
    • Hidden functionality (CWE-912) - CVE-2026-33280
    • Missing authentication for critical function (CWE-306) - CVE-2026-33366
    CVE-2015-1548 Justus W. Perlwitz of JWP Consulting reported this vulnerability to BUFFALO INC. and coordinated. After the coordination was completed, BUFFALO INC. reported the case to JPCERT/CC to notify users of the solution through JVN. CVE-2026-27650 Toshitsugu Yoneyama of Mitsui Bussan Secure Directions, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership. CVE-2026-32669 Koji Ando and KIRISHIKI Yudai of National Institute of Information and Communications Technology reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership. CVE-2026-32678, CVE-2026-33280, CVE-2026-33366 Chuya Hayakawa of 00One, Inc. reported these vulnerabilities to JPCERT/CC. JPCERT/CC coordinated with the developer.
    Show details on JVN DB website

    {
      "@rdf:about": "https://jvndb.jvn.jp/en/contents/2026/JVNDB-2026-000046.html",
      "dc:date": "2026-03-27T17:18+09:00",
      "dcterms:issued": "2026-03-27T17:18+09:00",
      "dcterms:modified": "2026-03-27T17:18+09:00",
      "description": "Wi-Fi router products provided by BUFFALO INC. contain multiple vulnerabilities listed below.\u003ca href=\u0027https://cwe.mitre.org/data/definitions/1395.html\u0027 target=\u0027_blank\u0027\u003e\u003c/a\u003e\u003ca href=\u0027https://cwe.mitre.org/data/definitions/78.html\u0027 target=\u0027_blank\u0027\u003e\u003c/a\u003e\u003ca href=\u0027https://cwe.mitre.org/data/definitions/94.html\u0027 target=\u0027_blank\u0027\u003e\u003c/a\u003e\u003ca href=\u0027https://cwe.mitre.org/data/definitions/288.html\u0027 target=\u0027_blank\u0027\u003e\u003c/a\u003e\u003ca href=\u0027http://cwe.mitre.org/data/definitions/912.html\u0027 target=\u0027_blank\u0027\u003e\u003c/a\u003e\u003ca href=\u0027https://cwe.mitre.org/data/definitions/306.html\u0027 target=\u0027_blank\u0027\u003e\u003c/a\u003e\u003cul\u003e\u003cli\u003eDependency on vulnerable third-party component (CWE-1395) - This issue is caused by a vulnerability in mini_httpd (CVE-2015-1548).\u003c/li\u003e\u003cli\u003eOS command injection (CWE-78) - CVE-2026-27650\u003c/li\u003e\u003cli\u003eCode injection (CWE-94) - CVE-2026-32669\u003c/li\u003e\u003cli\u003eAuthentication bypass using an alternate path or channel (CWE-288) - CVE-2026-32678\u003c/li\u003e\u003cli\u003eHidden functionality (CWE-912) - CVE-2026-33280\u003c/li\u003e\u003cli\u003eMissing authentication for critical function (CWE-306) - CVE-2026-33366\u003c/li\u003e\u003c/ul\u003eCVE-2015-1548\r\nJustus W. Perlwitz of JWP Consulting reported this vulnerability to BUFFALO INC. and coordinated.\r\nAfter the coordination was completed, BUFFALO INC. reported the case to JPCERT/CC to notify users of the solution through JVN.\r\n\r\nCVE-2026-27650\r\nToshitsugu Yoneyama of Mitsui Bussan Secure Directions, Inc. reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.\r\n\r\nCVE-2026-32669\r\nKoji Ando and KIRISHIKI Yudai of National Institute of Information and Communications Technology reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.\r\n\r\nCVE-2026-32678, CVE-2026-33280, CVE-2026-33366\r\nChuya Hayakawa of 00One, Inc. reported these vulnerabilities to JPCERT/CC. JPCERT/CC coordinated with the developer.",
      "link": "https://jvndb.jvn.jp/en/contents/2026/JVNDB-2026-000046.html",
      "sec:cpe": {
        "#text": "cpe:/o:buffalo_inc:buffalo_wi-fi_router",
        "@product": "Multiple BUFFALO Wi-Fi router products",
        "@vendor": "BUFFALO INC.",
        "@version": "2.2"
      },
      "sec:cvss": {
        "@score": "8.8",
        "@severity": "High",
        "@type": "Base",
        "@vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
        "@version": "3.0"
      },
      "sec:identifier": "JVNDB-2026-000046",
      "sec:references": [
        {
          "#text": "https://jvn.jp/en/jp/JVN83788689/index.html",
          "@id": "JVN#83788689",
          "@source": "JVN"
        },
        {
          "#text": "https://www.cve.org/CVERecord?id=CVE-2026-27650",
          "@id": "CVE-2026-27650",
          "@source": "CVE"
        },
        {
          "#text": "https://www.cve.org/CVERecord?id=CVE-2026-32669",
          "@id": "CVE-2026-32669",
          "@source": "CVE"
        },
        {
          "#text": "https://www.cve.org/CVERecord?id=CVE-2026-32678",
          "@id": "CVE-2026-32678",
          "@source": "CVE"
        },
        {
          "#text": "https://www.cve.org/CVERecord?id=CVE-2026-33280",
          "@id": "CVE-2026-33280",
          "@source": "CVE"
        },
        {
          "#text": "https://www.cve.org/CVERecord?id=CVE-2026-33366",
          "@id": "CVE-2026-33366",
          "@source": "CVE"
        },
        {
          "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
          "@id": "CWE-78",
          "@title": "OS Command Injection(CWE-78)"
        },
        {
          "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
          "@id": "CWE-Other",
          "@title": "No Mapping(CWE-Other)"
        }
      ],
      "title": "Multiple vulnerabilities in BUFFALO Wi-Fi routers"
    }

    JVNDB-2025-000103

    Vulnerability from jvndb - Published: 2025-11-07 15:39 - Updated:2025-11-07 15:39
    Severity
    Summary
    Use of password hash with insufficient computational effort vulnerability in BUFFALO Wi-Fi router "WSR-1800AX4 series"
    Details
    Wi-Fi router "WSR-1800AX4 series" provided by BUFFALO INC. contains the following vulnerability. * Use of password hash with insufficient computational effort (CWE-916) - CVE-2025-46413 Kazuaki Chikamori and Takayuki Tatekawa of National Institute of Technology, Kochi College reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
    Show details on JVN DB website

    {
      "@rdf:about": "https://jvndb.jvn.jp/en/contents/2025/JVNDB-2025-000103.html",
      "dc:date": "2025-11-07T15:39+09:00",
      "dcterms:issued": "2025-11-07T15:39+09:00",
      "dcterms:modified": "2025-11-07T15:39+09:00",
      "description": "Wi-Fi router \"WSR-1800AX4 series\" provided by BUFFALO INC. contains the following vulnerability.\r\n\r\n* Use of password hash with insufficient computational effort (CWE-916) - CVE-2025-46413\r\n\r\nKazuaki Chikamori and Takayuki Tatekawa of National Institute of Technology, Kochi College reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
      "link": "https://jvndb.jvn.jp/en/contents/2025/JVNDB-2025-000103.html",
      "sec:cpe": [
        {
          "#text": "cpe:/o:buffalo_inc:wsr-1800ax4-kh_firmware",
          "@product": "WSR-1800AX4-KH firmware",
          "@vendor": "BUFFALO INC.",
          "@version": "2.2"
        },
        {
          "#text": "cpe:/o:buffalo_inc:wsr-1800ax4b_firmware",
          "@product": "WSR-1800AX4B firmware",
          "@vendor": "BUFFALO INC.",
          "@version": "2.2"
        },
        {
          "#text": "cpe:/o:buffalo_inc:wsr-1800ax4s_firmware",
          "@product": "WSR-1800AX4S firmware",
          "@vendor": "BUFFALO INC.",
          "@version": "2.2"
        },
        {
          "#text": "cpe:/o:buffalo_inc:wsr-1800ax4_firmware",
          "@product": "WSR-1800AX4 firmware",
          "@vendor": "BUFFALO INC.",
          "@version": "2.2"
        }
      ],
      "sec:cvss": {
        "@score": "4.3",
        "@severity": "Medium",
        "@type": "Base",
        "@vector": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
        "@version": "3.0"
      },
      "sec:identifier": "JVNDB-2025-000103",
      "sec:references": [
        {
          "#text": "https://jvn.jp/en/jp/JVN13754005/index.html",
          "@id": "JVN#13754005",
          "@source": "JVN"
        },
        {
          "#text": "https://www.cve.org/CVERecord?id=CVE-2025-46413",
          "@id": "CVE-2025-46413",
          "@source": "CVE"
        },
        {
          "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
          "@id": "CWE-Other",
          "@title": "No Mapping(CWE-Other)"
        }
      ],
      "title": "Use of password hash with insufficient computational effort vulnerability in BUFFALO Wi-Fi router \"WSR-1800AX4 series\""
    }

    JVNDB-2025-016124

    Vulnerability from jvndb - Published: 2025-10-16 11:16 - Updated:2025-10-16 11:16
    Severity
    Summary
    Buffalo Wi-Fi router WXR9300BE6P series vulnerable to path traversal
    Details
    Wi-Fi router WXR9300BE6P series provided by BUFFALO INC. contains the following vulnerability. * Path traversal (CWE-22) - CVE-2025-61941 Chuya Hayakawa of 00One, Inc. reported this vulnerability to JPCERT/CC. JPCERT/CC coordinated with the developer.
    Impacted products
    Show details on JVN DB website

    {
      "@rdf:about": "https://jvndb.jvn.jp/en/contents/2025/JVNDB-2025-016124.html",
      "dc:date": "2025-10-16T11:16+09:00",
      "dcterms:issued": "2025-10-16T11:16+09:00",
      "dcterms:modified": "2025-10-16T11:16+09:00",
      "description": "Wi-Fi router WXR9300BE6P series provided by BUFFALO INC. contains the following vulnerability.\r\n\r\n* Path traversal (CWE-22) - CVE-2025-61941\r\n\r\nChuya Hayakawa of 00One, Inc. reported this vulnerability to JPCERT/CC.\r\nJPCERT/CC coordinated with the developer.",
      "link": "https://jvndb.jvn.jp/en/contents/2025/JVNDB-2025-016124.html",
      "sec:cpe": {
        "#text": "cpe:/o:buffalo_inc:wxr9300be6p_series_firmware",
        "@product": "WXR9300BE6P series firmware",
        "@vendor": "BUFFALO INC.",
        "@version": "2.2"
      },
      "sec:cvss": {
        "@score": "7.2",
        "@severity": "High",
        "@type": "Base",
        "@vector": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
        "@version": "3.0"
      },
      "sec:identifier": "JVNDB-2025-016124",
      "sec:references": [
        {
          "#text": "https://jvn.jp/en/vu/JVNVU96471278/index.html",
          "@id": "JVNVU#96471278",
          "@source": "JVN"
        },
        {
          "#text": "https://www.cve.org/CVERecord?id=CVE-2025-61941",
          "@id": "CVE-2025-61941",
          "@source": "CVE"
        },
        {
          "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
          "@id": "CWE-22",
          "@title": "Path Traversal(CWE-22)"
        }
      ],
      "title": "Buffalo Wi-Fi router WXR9300BE6P series vulnerable to path traversal"
    }

    JVNDB-2025-000083

    Vulnerability from jvndb - Published: 2025-10-10 13:56 - Updated:2025-10-10 13:56
    Severity
    Summary
    BUFFALO NAS Navigator2 registers a Windows service with an unquoted file path
    Details
    NAS Navigator2 provided by BUFFALO INC. contains the following vulnerability. * Unquoted search path or element (CWE-428) - CVE-2025-61871 Kazuma Matsumoto of GMO Cybersecurity by IERAE, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
    Impacted products
    Show details on JVN DB website

    {
      "@rdf:about": "https://jvndb.jvn.jp/en/contents/2025/JVNDB-2025-000083.html",
      "dc:date": "2025-10-10T13:56+09:00",
      "dcterms:issued": "2025-10-10T13:56+09:00",
      "dcterms:modified": "2025-10-10T13:56+09:00",
      "description": "NAS Navigator2 provided by BUFFALO INC. contains the following vulnerability.\r\n\r\n* Unquoted search path or element (CWE-428) - CVE-2025-61871\r\n\r\nKazuma Matsumoto of GMO Cybersecurity by IERAE, Inc. reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
      "link": "https://jvndb.jvn.jp/en/contents/2025/JVNDB-2025-000083.html",
      "sec:cpe": {
        "#text": "cpe:/o:buffalo_inc:nas_navigator2",
        "@product": "NAS Navigator2",
        "@vendor": "BUFFALO INC.",
        "@version": "2.2"
      },
      "sec:cvss": {
        "@score": "6.7",
        "@severity": "Medium",
        "@type": "Base",
        "@vector": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
        "@version": "3.0"
      },
      "sec:identifier": "JVNDB-2025-000083",
      "sec:references": [
        {
          "#text": "https://jvn.jp/en/jp/JVN69099112/index.html",
          "@id": "JVN#69099112",
          "@source": "JVN"
        },
        {
          "#text": "https://www.cve.org/CVERecord?id=CVE-2025-61871",
          "@id": "CVE-2025-61871",
          "@source": "CVE"
        },
        {
          "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
          "@id": "CWE-Other",
          "@title": "No Mapping(CWE-Other)"
        }
      ],
      "title": "BUFFALO NAS Navigator2 registers a Windows service with an unquoted file path"
    }

    JVNDB-2024-000087

    Vulnerability from jvndb - Published: 2024-08-23 14:17 - Updated:2024-08-23 14:17
    Severity
    Summary
    BUFFALO wireless LAN routers and wireless LAN repeaters vulnerable to OS command injection
    Details
    Wireless LAN routers and wireless LAN repeaters provided by BUFFALO INC. contain an OS command injection vulnerability (CWE-78). Yoshiki Mori and Masaki Kubo of National Institute of Information and Communications Technology, Cybersecurity Research Laboratory reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
    Show details on JVN DB website

    {
      "@rdf:about": "https://jvndb.jvn.jp/en/contents/2024/JVNDB-2024-000087.html",
      "dc:date": "2024-08-23T14:17+09:00",
      "dcterms:issued": "2024-08-23T14:17+09:00",
      "dcterms:modified": "2024-08-23T14:17+09:00",
      "description": "Wireless LAN routers and wireless LAN repeaters provided by BUFFALO INC. contain an OS command injection vulnerability (CWE-78).\r\n\r\nYoshiki Mori and Masaki Kubo of National Institute of Information and Communications Technology, Cybersecurity Research Laboratory reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
      "link": "https://jvndb.jvn.jp/en/contents/2024/JVNDB-2024-000087.html",
      "sec:cpe": [
        {
          "#text": "cpe:/h:buffalo_inc:whr-1166dhp",
          "@product": "WHR-1166DHP",
          "@vendor": "BUFFALO INC.",
          "@version": "2.2"
        },
        {
          "#text": "cpe:/h:buffalo_inc:whr-300hp2",
          "@product": "WHR-300HP2",
          "@vendor": "BUFFALO INC.",
          "@version": "2.2"
        },
        {
          "#text": "cpe:/h:buffalo_inc:whr-600d",
          "@product": "WHR-600D",
          "@vendor": "BUFFALO INC.",
          "@version": "2.2"
        },
        {
          "#text": "cpe:/h:buffalo_inc:wmr-300",
          "@product": "WMR-300",
          "@vendor": "BUFFALO INC.",
          "@version": "2.2"
        },
        {
          "#text": "cpe:/h:buffalo_inc:wsr-600dhp",
          "@product": "WSR-600DHP",
          "@vendor": "BUFFALO INC.",
          "@version": "2.2"
        },
        {
          "#text": "cpe:/o:buffalo_inc:wex-1166dhp",
          "@product": "WEX-1166DHP",
          "@vendor": "BUFFALO INC.",
          "@version": "2.2"
        },
        {
          "#text": "cpe:/o:buffalo_inc:wex-1166dhp2",
          "@product": "WEX-1166DHP2",
          "@vendor": "BUFFALO INC.",
          "@version": "2.2"
        },
        {
          "#text": "cpe:/o:buffalo_inc:wex-1166dhps",
          "@product": "WEX-1166DHPS",
          "@vendor": "BUFFALO INC.",
          "@version": "2.2"
        },
        {
          "#text": "cpe:/o:buffalo_inc:wex-300hps%2Fn",
          "@product": "WEX-300HPS/N",
          "@vendor": "BUFFALO INC.",
          "@version": "2.2"
        },
        {
          "#text": "cpe:/o:buffalo_inc:wex-300hptx%2Fn",
          "@product": "WEX-300HPTX/N",
          "@vendor": "BUFFALO INC.",
          "@version": "2.2"
        },
        {
          "#text": "cpe:/o:buffalo_inc:wex-733dhp",
          "@product": "WEX-733DHP",
          "@vendor": "BUFFALO INC.",
          "@version": "2.2"
        },
        {
          "#text": "cpe:/o:buffalo_inc:wex-733dhp2",
          "@product": "WEX-733DHP2",
          "@vendor": "BUFFALO INC.",
          "@version": "2.2"
        },
        {
          "#text": "cpe:/o:buffalo_inc:wex-733dhps",
          "@product": "WEX-733DHPS",
          "@vendor": "BUFFALO INC.",
          "@version": "2.2"
        },
        {
          "#text": "cpe:/o:buffalo_inc:wex-733dhptx",
          "@product": "WEX-733DHPTX",
          "@vendor": "BUFFALO INC.",
          "@version": "2.2"
        },
        {
          "#text": "cpe:/o:buffalo_inc:whr-1166dhp2",
          "@product": "WHR-1166DHP2",
          "@vendor": "BUFFALO INC.",
          "@version": "2.2"
        },
        {
          "#text": "cpe:/o:buffalo_inc:whr-1166dhp3",
          "@product": "WHR-1166DHP3",
          "@vendor": "BUFFALO INC.",
          "@version": "2.2"
        },
        {
          "#text": "cpe:/o:buffalo_inc:whr-1166dhp4",
          "@product": "WHR-1166DHP4",
          "@vendor": "BUFFALO INC.",
          "@version": "2.2"
        },
        {
          "#text": "cpe:/o:buffalo_inc:wsr-1166dhp3",
          "@product": "WSR-1166DHP3",
          "@vendor": "BUFFALO INC.",
          "@version": "2.2"
        }
      ],
      "sec:cvss": {
        "@score": "7.2",
        "@severity": "High",
        "@type": "Base",
        "@vector": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
        "@version": "3.0"
      },
      "sec:identifier": "JVNDB-2024-000087",
      "sec:references": [
        {
          "#text": "https://jvn.jp/en/jp/JVN12824024/index.html",
          "@id": "JVN#12824024",
          "@source": "JVN"
        },
        {
          "#text": "https://www.cve.org/CVERecord?id=CVE-2024-44072",
          "@id": "CVE-2024-44072",
          "@source": "CVE"
        },
        {
          "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
          "@id": "CWE-78",
          "@title": "OS Command Injection(CWE-78)"
        }
      ],
      "title": "BUFFALO wireless LAN routers and wireless LAN repeaters vulnerable to OS command injection"
    }

    JVNDB-2024-000040

    Vulnerability from jvndb - Published: 2024-04-15 16:29 - Updated:2024-04-15 16:29
    Severity
    Summary
    Multiple vulnerabilities in BUFFALO wireless LAN routers
    Details
    Multiple wireless LAN routers provided by BUFFALO INC. contain multiple vulnerabilities listed below. * Plaintext storage of a password (CWE-256) * OS Command Injection (CWE-78) Satoru Nagaoka of Cyber Defense Institute, Inc. reported these vulnerabilities to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
    Show details on JVN DB website

    {
      "@rdf:about": "https://jvndb.jvn.jp/en/contents/2024/JVNDB-2024-000040.html",
      "dc:date": "2024-04-15T16:29+09:00",
      "dcterms:issued": "2024-04-15T16:29+09:00",
      "dcterms:modified": "2024-04-15T16:29+09:00",
      "description": "Multiple wireless LAN routers provided by BUFFALO INC. contain multiple vulnerabilities listed below.\r\n\r\n  * Plaintext storage of a password (CWE-256)\r\n  * OS Command Injection (CWE-78)\r\n\r\nSatoru Nagaoka of Cyber Defense Institute, Inc. reported these vulnerabilities to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
      "link": "https://jvndb.jvn.jp/en/contents/2024/JVNDB-2024-000040.html",
      "sec:cpe": [
        {
          "#text": "cpe:/o:buffalo_inc:wcr-1166ds_firmware",
          "@product": "WCR-1166DS firmware",
          "@vendor": "BUFFALO INC.",
          "@version": "2.2"
        },
        {
          "#text": "cpe:/o:buffalo_inc:wsr-1166dhp2_firmware",
          "@product": "WSR-1166DHP2 firmware",
          "@vendor": "BUFFALO INC.",
          "@version": "2.2"
        },
        {
          "#text": "cpe:/o:buffalo_inc:wsr-1166dhp_firmware",
          "@product": "WSR-1166DHP firmware",
          "@vendor": "BUFFALO INC.",
          "@version": "2.2"
        },
        {
          "#text": "cpe:/o:buffalo_inc:wsr-2533dhp2_firmware",
          "@product": "WSR-2533DHP2 firmware",
          "@vendor": "BUFFALO INC.",
          "@version": "2.2"
        },
        {
          "#text": "cpe:/o:buffalo_inc:wsr-2533dhpl_firmware",
          "@product": "WSR-2533DHPL firmware",
          "@vendor": "BUFFALO INC.",
          "@version": "2.2"
        },
        {
          "#text": "cpe:/o:buffalo_inc:wsr-2533dhp_firmware",
          "@product": "WSR-2533DHP firmware",
          "@vendor": "BUFFALO INC.",
          "@version": "2.2"
        },
        {
          "#text": "cpe:/o:buffalo_inc:wsr-a2533dhp2_firmware",
          "@product": "WSR-A2533DHP2 firmware",
          "@vendor": "BUFFALO INC.",
          "@version": "2.2"
        }
      ],
      "sec:cvss": {
        "@score": "6.8",
        "@severity": "Medium",
        "@type": "Base",
        "@vector": "CVSS:3.0/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
        "@version": "3.0"
      },
      "sec:identifier": "JVNDB-2024-000040",
      "sec:references": [
        {
          "#text": "https://jvn.jp/en/jp/JVN58236836/index.html",
          "@id": "JVN#58236836",
          "@source": "JVN"
        },
        {
          "#text": "https://www.cve.org/CVERecord?id=CVE-2024-23486",
          "@id": "CVE-2024-23486",
          "@source": "CVE"
        },
        {
          "#text": "https://www.cve.org/CVERecord?id=CVE-2024-26023",
          "@id": "CVE-2024-26023",
          "@source": "CVE"
        },
        {
          "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
          "@id": "CWE-78",
          "@title": "OS Command Injection(CWE-78)"
        },
        {
          "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
          "@id": "CWE-Other",
          "@title": "No Mapping(CWE-Other)"
        }
      ],
      "title": "Multiple vulnerabilities in BUFFALO wireless LAN routers"
    }

    JVNDB-2023-025113

    Vulnerability from jvndb - Published: 2024-03-25 18:16 - Updated:2024-03-25 18:16
    Severity
    Summary
    BUFFALO LinkStation 200 series vulnerable to arbitrary code execution
    Details
    LinkStation 200 series provided by BUFFALO INC. is a network attached storage (NAS). LinkStation 200 series contains an arbitrary code execution vulnerability (CWE-354, CVE-2023-51073) due to insufficient verification of data authenticity during firmware update. BUFFALO INC. reported this vulnerability to JPCERT/CC to notify users of its solution through JVN.
    Show details on JVN DB website

    {
      "@rdf:about": "https://jvndb.jvn.jp/en/contents/2024/JVNDB-2023-025113.html",
      "dc:date": "2024-03-25T18:16+09:00",
      "dcterms:issued": "2024-03-25T18:16+09:00",
      "dcterms:modified": "2024-03-25T18:16+09:00",
      "description": "LinkStation 200 series provided by BUFFALO INC. is a network attached storage (NAS).\r\nLinkStation 200 series contains an arbitrary code execution vulnerability (CWE-354, CVE-2023-51073) due to insufficient verification of data authenticity during firmware update.\r\n\r\nBUFFALO INC. reported this vulnerability to JPCERT/CC to notify users of its solution through JVN.",
      "link": "https://jvndb.jvn.jp/en/contents/2024/JVNDB-2023-025113.html",
      "sec:cpe": [
        {
          "#text": "cpe:/o:buffalo_inc:ls210d_firmware",
          "@product": "LS210D firmware",
          "@vendor": "BUFFALO INC.",
          "@version": "2.2"
        },
        {
          "#text": "cpe:/o:buffalo_inc:ls220db_firmware",
          "@product": "LS220DB firmware",
          "@vendor": "BUFFALO INC.",
          "@version": "2.2"
        },
        {
          "#text": "cpe:/o:buffalo_inc:ls220dr_firmware",
          "@product": "LS220DR firmware",
          "@vendor": "BUFFALO INC.",
          "@version": "2.2"
        },
        {
          "#text": "cpe:/o:buffalo_inc:ls220d_firmware",
          "@product": "LS220D firmware",
          "@vendor": "BUFFALO INC.",
          "@version": "2.2"
        }
      ],
      "sec:cvss": {
        "@score": "5.3",
        "@severity": "Medium",
        "@type": "Base",
        "@vector": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N",
        "@version": "3.0"
      },
      "sec:identifier": "JVNDB-2023-025113",
      "sec:references": [
        {
          "#text": "https://jvn.jp/en/vu/JVNVU90953541/index.html",
          "@id": "JVNVU#90953541",
          "@source": "JVN"
        },
        {
          "#text": "https://www.cve.org/CVERecord?id=CVE-2023-51073",
          "@id": "CVE-2023-51073",
          "@source": "CVE"
        },
        {
          "#text": "https://nvd.nist.gov/vuln/detail/CVE-2023-51073",
          "@id": "CVE-2023-51073",
          "@source": "NVD"
        },
        {
          "#text": "https://github.com/christopher-pace/CVE-2023-51073/",
          "@id": "github.com (CVE-2023-51073)",
          "@source": "Related document"
        },
        {
          "#text": "https://www.buffalotech.com",
          "@id": "www.buffalotech.com",
          "@source": "Related document"
        },
        {
          "#text": "https://cwe.mitre.org/data/definitions/354.html",
          "@id": "CWE-354",
          "@title": "Improper Validation of Integrity Check Value(CWE-354)"
        }
      ],
      "title": "BUFFALO LinkStation 200 series vulnerable to arbitrary code execution"
    }

    CVE-2026-33366 (GCVE-0-2026-33366)

    Vulnerability from nvd – Published: 2026-03-27 05:25 – Updated: 2026-03-27 19:37
    VLAI
    Summary
    Missing authentication for critical function vulnerability in BUFFALO Wi-Fi router products may allow an attacker to forcibly reboot the product without authentication.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-306 - Missing authentication for critical function
    Assigner
    Impacted products
    Vendor Product Version
    BUFFALO INC. BUFFALO Wi-Fi router products Affected: See "References" section
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-33366",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-03-27T19:37:40.586444Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-03-27T19:37:52.746Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "BUFFALO Wi-Fi router products",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "See \"References\" section"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Missing authentication for critical function vulnerability in BUFFALO Wi-Fi router products may allow an attacker to forcibly reboot the product without authentication."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
                "version": "3.0"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            },
            {
              "cvssV4_0": {
                "baseScore": 6.9,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
                "version": "4.0"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-306",
                  "description": "Missing authentication for critical function",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-03-27T05:25:58.656Z",
            "orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
            "shortName": "jpcert"
          },
          "references": [
            {
              "url": "https://www.buffalo.jp/news/detail/20260323-01.html"
            },
            {
              "url": "https://jvn.jp/en/jp/JVN83788689/"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
        "assignerShortName": "jpcert",
        "cveId": "CVE-2026-33366",
        "datePublished": "2026-03-27T05:25:58.656Z",
        "dateReserved": "2026-03-25T06:25:35.445Z",
        "dateUpdated": "2026-03-27T19:37:52.746Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-33280 (GCVE-0-2026-33280)

    Vulnerability from nvd – Published: 2026-03-27 05:25 – Updated: 2026-03-27 19:54
    VLAI
    Summary
    Hidden functionality issue exists in BUFFALO Wi-Fi router products, which may allow an attacker to gain access to the product’s debugging functionality, resulting in the execution of arbitrary OS commands.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    BUFFALO INC. BUFFALO Wi-Fi router products Affected: See "References" section
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-33280",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-03-27T19:53:56.292921Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-03-27T19:54:05.856Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "BUFFALO Wi-Fi router products",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "See \"References\" section"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Hidden functionality issue exists in BUFFALO Wi-Fi router products, which may allow an attacker to gain access to the product\u2019s debugging functionality, resulting in the execution of arbitrary OS commands."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "baseScore": 7.2,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.0"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            },
            {
              "cvssV4_0": {
                "baseScore": 8.6,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
                "version": "4.0"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-912",
                  "description": "Hidden functionality",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-03-27T05:25:41.078Z",
            "orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
            "shortName": "jpcert"
          },
          "references": [
            {
              "url": "https://www.buffalo.jp/news/detail/20260323-01.html"
            },
            {
              "url": "https://jvn.jp/en/jp/JVN83788689/"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
        "assignerShortName": "jpcert",
        "cveId": "CVE-2026-33280",
        "datePublished": "2026-03-27T05:25:41.078Z",
        "dateReserved": "2026-03-25T06:25:26.636Z",
        "dateUpdated": "2026-03-27T19:54:05.856Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-32678 (GCVE-0-2026-32678)

    Vulnerability from nvd – Published: 2026-03-27 05:25 – Updated: 2026-03-27 19:53
    VLAI
    Summary
    Authentication bypass issue exists in BUFFALO Wi-Fi router products, which may allow an attacker to alter critical configuration settings without authentication.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-288 - Authentication Bypass Using an Alternate Path or Channel
    Assigner
    Impacted products
    Vendor Product Version
    BUFFALO INC. BUFFALO Wi-Fi router products Affected: See "References" section
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-32678",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-03-27T19:53:10.762357Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-03-27T19:53:19.116Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "BUFFALO Wi-Fi router products",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "See \"References\" section"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Authentication bypass issue exists in BUFFALO Wi-Fi router products, which may allow an attacker to alter critical configuration settings without authentication."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
                "version": "3.0"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            },
            {
              "cvssV4_0": {
                "baseScore": 8.7,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N",
                "version": "4.0"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-288",
                  "description": "Authentication Bypass Using an Alternate Path or Channel",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-03-27T05:25:19.851Z",
            "orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
            "shortName": "jpcert"
          },
          "references": [
            {
              "url": "https://www.buffalo.jp/news/detail/20260323-01.html"
            },
            {
              "url": "https://jvn.jp/en/jp/JVN83788689/"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
        "assignerShortName": "jpcert",
        "cveId": "CVE-2026-32678",
        "datePublished": "2026-03-27T05:25:19.851Z",
        "dateReserved": "2026-03-25T06:25:32.059Z",
        "dateUpdated": "2026-03-27T19:53:19.116Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-32669 (GCVE-0-2026-32669)

    Vulnerability from nvd – Published: 2026-03-27 05:24 – Updated: 2026-03-27 19:52
    VLAI
    Summary
    Code injection vulnerability exists in BUFFALO Wi-Fi router products. If this vulnerability is exploited, an arbitrary code may be executed on the products.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    BUFFALO INC. BUFFALO Wi-Fi router products Affected: See "References" section
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-32669",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-03-27T19:52:27.020391Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-03-27T19:52:38.686Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "BUFFALO Wi-Fi router products",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "See \"References\" section"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Code injection vulnerability exists in BUFFALO Wi-Fi router products. If this vulnerability is exploited, an arbitrary code may be executed on the products."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "baseScore": 8.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            },
            {
              "cvssV4_0": {
                "baseScore": 8.7,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
                "version": "4.0"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-94",
                  "description": "Code injection",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-03-27T05:24:52.376Z",
            "orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
            "shortName": "jpcert"
          },
          "references": [
            {
              "url": "https://www.buffalo.jp/news/detail/20260323-01.html"
            },
            {
              "url": "https://jvn.jp/en/jp/JVN83788689/"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
        "assignerShortName": "jpcert",
        "cveId": "CVE-2026-32669",
        "datePublished": "2026-03-27T05:24:52.376Z",
        "dateReserved": "2026-03-25T06:25:33.514Z",
        "dateUpdated": "2026-03-27T19:52:38.686Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-27650 (GCVE-0-2026-27650)

    Vulnerability from nvd – Published: 2026-03-27 05:24 – Updated: 2026-03-27 19:58
    VLAI
    Summary
    OS Command Injection vulnerability exists in BUFFALO Wi-Fi router products. If this vulnerability is exploited, an arbitrary OS command may be executed on the products.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-78 - Improper neutralization of special elements used in an OS command ('OS Command Injection')
    Assigner
    Impacted products
    Vendor Product Version
    BUFFALO INC. BUFFALO Wi-Fi router products Affected: See "References" section
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-27650",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-03-27T19:58:33.808324Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-03-27T19:58:51.644Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "BUFFALO Wi-Fi router products",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "See \"References\" section"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "OS Command Injection vulnerability exists in BUFFALO Wi-Fi router products. If this vulnerability is exploited, an arbitrary OS command may be executed on the products."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "baseScore": 8.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            },
            {
              "cvssV4_0": {
                "baseScore": 8.6,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
                "version": "4.0"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-78",
                  "description": "Improper neutralization of special elements used in an OS command (\u0027OS Command Injection\u0027)",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-03-27T05:24:35.501Z",
            "orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
            "shortName": "jpcert"
          },
          "references": [
            {
              "url": "https://www.buffalo.jp/news/detail/20260323-01.html"
            },
            {
              "url": "https://jvn.jp/en/jp/JVN83788689/"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
        "assignerShortName": "jpcert",
        "cveId": "CVE-2026-27650",
        "datePublished": "2026-03-27T05:24:35.501Z",
        "dateReserved": "2026-03-25T06:25:30.930Z",
        "dateUpdated": "2026-03-27T19:58:51.644Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-46413 (GCVE-0-2025-46413)

    Vulnerability from nvd – Published: 2025-11-07 08:51 – Updated: 2025-11-07 13:15
    VLAI
    Summary
    Use of password hash with insufficient computational effort issue exists in BUFFALO Wi-Fi router 'WSR-1800AX4 series'. When WPS is enabled, PIN code and/or Wi-Fi password may be obtained by an attacker.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-916 - Use of password hash with insufficient computational effort
    Assigner
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-46413",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-11-07T13:14:56.223820Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-11-07T13:15:18.610Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "WSR-1800AX4",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "prior to Ver.1.09"
                }
              ]
            },
            {
              "product": "WSR-1800AX4S",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "prior to Ver.1.11"
                }
              ]
            },
            {
              "product": "WSR-1800AX4B",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "prior to Ver.1.11"
                }
              ]
            },
            {
              "product": "WSR-1800AX4-KH",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "prior to Ver.1.19"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Use of password hash with insufficient computational effort issue exists in BUFFALO Wi-Fi router \u0027WSR-1800AX4 series\u0027. When WPS is enabled, PIN code and/or Wi-Fi password may be obtained by an attacker."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "baseScore": 4.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
                "version": "3.0"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            },
            {
              "cvssV4_0": {
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
                "version": "4.0"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-916",
                  "description": "Use of password hash with insufficient computational effort",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-11-07T08:51:52.847Z",
            "orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
            "shortName": "jpcert"
          },
          "references": [
            {
              "url": "https://www.buffalo.jp/news/detail/20251107-01.html"
            },
            {
              "url": "https://jvn.jp/en/jp/JVN13754005/"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
        "assignerShortName": "jpcert",
        "cveId": "CVE-2025-46413",
        "datePublished": "2025-11-07T08:51:52.847Z",
        "dateReserved": "2025-10-30T02:34:37.562Z",
        "dateUpdated": "2025-11-07T13:15:18.610Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-61941 (GCVE-0-2025-61941)

    Vulnerability from nvd – Published: 2025-10-15 07:24 – Updated: 2025-10-15 16:03
    VLAI
    Summary
    A path traversal issue exists in WXR9300BE6P series firmware versions prior to Ver.1.10. Arbitrary file may be altered by an administrative user who logs in to the affected product. Moreover, arbitrary OS command may be executed via some file alteration.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-22 - Improper limitation of a pathname to a restricted directory ('Path Traversal')
    Assigner
    Impacted products
    Vendor Product Version
    BUFFALO INC. WXR9300BE6P series Affected: firmware versions prior to Ver.1.10
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-61941",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-15T16:00:39.955256Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-15T16:03:22.387Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "WXR9300BE6P series",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "firmware versions prior to Ver.1.10"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A path traversal issue exists in WXR9300BE6P series firmware versions prior to Ver.1.10. Arbitrary file may be altered by an administrative user who logs in to the affected product. Moreover, arbitrary OS command may be executed via some file alteration."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "baseScore": 7.2,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.0"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            },
            {
              "cvssV4_0": {
                "baseScore": 8.6,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
                "version": "4.0"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-22",
                  "description": "Improper limitation of a pathname to a restricted directory (\u0027Path Traversal\u0027)",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-10-15T07:24:09.131Z",
            "orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
            "shortName": "jpcert"
          },
          "references": [
            {
              "url": "https://www.buffalo.jp/news/detail/20251014-01.html"
            },
            {
              "url": "https://jvn.jp/en/vu/JVNVU96471278/"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
        "assignerShortName": "jpcert",
        "cveId": "CVE-2025-61941",
        "datePublished": "2025-10-15T07:24:09.131Z",
        "dateReserved": "2025-10-14T08:33:32.230Z",
        "dateUpdated": "2025-10-15T16:03:22.387Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2025-61871 (GCVE-0-2025-61871)

    Vulnerability from nvd – Published: 2025-10-10 04:52 – Updated: 2025-10-10 18:32
    VLAI
    Summary
    NAS Navigator2 Windows version by BUFFALO INC. registers a Windows service with an unquoted file path. A user with the write permission on the root directory of the system drive may execute arbitrary code with SYSTEM privilege.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-428 - Unquoted search path or element
    Assigner
    Impacted products
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-61871",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-10T18:32:36.026113Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-10T18:32:49.428Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "NAS Navigator2 (Windows version only)",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "prior to Ver.3.12.0"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "NAS Navigator2 Windows version by BUFFALO INC. registers a Windows service with an unquoted file path. A user with the write permission on the root directory of the system drive may execute arbitrary code with SYSTEM privilege."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "baseScore": 6.7,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.0"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            },
            {
              "cvssV4_0": {
                "baseScore": 8.4,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
                "version": "4.0"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-428",
                  "description": "Unquoted search path or element",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-10-10T04:52:17.112Z",
            "orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
            "shortName": "jpcert"
          },
          "references": [
            {
              "url": "https://www.buffalo.jp/news/detail/20251009-01.html"
            },
            {
              "url": "https://jvn.jp/en/jp/JVN69099112/"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
        "assignerShortName": "jpcert",
        "cveId": "CVE-2025-61871",
        "datePublished": "2025-10-10T04:52:17.112Z",
        "dateReserved": "2025-10-02T23:47:37.697Z",
        "dateUpdated": "2025-10-10T18:32:49.428Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-44072 (GCVE-0-2024-44072)

    Vulnerability from nvd – Published: 2024-09-10 06:56 – Updated: 2024-09-10 19:58
    VLAI
    Summary
    OS command injection vulnerability exists in BUFFALO wireless LAN routers and wireless LAN repeaters. If a user logs in to the management page and sends a specially crafted request to the affected product from the product's specific management page, an arbitrary OS command may be executed.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • OS command injection
    • CWE-78 - Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
    Assigner
    Impacted products
    Vendor Product Version
    BUFFALO INC. WHR-1166DHP2 Affected: Ver. 2.95 and earlier
    Create a notification for this product.
    BUFFALO INC. WHR-1166DHP3 Affected: Ver. 2.95 and earlier
    Create a notification for this product.
    BUFFALO INC. WHR-1166DHP4 Affected: Ver. 2.95 and earlier
    Create a notification for this product.
    BUFFALO INC. WSR-1166DHP3 Affected: Ver. 1.18 and earlier
    Create a notification for this product.
    BUFFALO INC. WSR-600DHP Affected: Ver. 2.93 and earlier
    Create a notification for this product.
    BUFFALO INC. WEX-300HPTX/N Affected: Ver. 1.02 and earlier
    Create a notification for this product.
    BUFFALO INC. WEX-733DHP2 Affected: Ver. 1.03 and earlier
    Create a notification for this product.
    BUFFALO INC. WEX-1166DHP2 Affected: Ver. 1.05 and earlier
    Create a notification for this product.
    BUFFALO INC. WEX-1166DHPS Affected: Ver. 1.05 and earlier
    Create a notification for this product.
    BUFFALO INC. WEX-300HPS/N Affected: Ver. 1.02 and earlier
    Create a notification for this product.
    BUFFALO INC. WEX-733DHPS Affected: Ver. 1.02 and earlier
    Create a notification for this product.
    BUFFALO INC. WEX-733DHPTX Affected: Ver. 1.03 and earlier
    Create a notification for this product.
    BUFFALO INC. WEX-1166DHP Affected: Ver. 1.23 and earlier
    Create a notification for this product.
    BUFFALO INC. WEX-733DHP Affected: Ver. 1.64 and earlier
    Create a notification for this product.
    BUFFALO INC. WHR-1166DHP Affected: Ver. 2.92 and earlier
    Create a notification for this product.
    BUFFALO INC. WHR-300HP2 Affected: Ver. 2.51 and earlier
    Create a notification for this product.
    BUFFALO INC. WHR-600D Affected: Ver. 2.91 and earlier
    Create a notification for this product.
    BUFFALO INC. WMR-300 Affected: Ver. 2.50 and earlier
    Create a notification for this product.
    buffalo_inc whr_1166dhp2 Affected: 0 , ≤ 2.95 (custom)
        cpe:2.3:h:buffalo_inc:whr_1166dhp2:*:*:*:*:*:*:*:*
    Create a notification for this product.
    buffalo_inc whr_1166dhp3 Affected: 0 , ≤ 2.95 (custom)
        cpe:2.3:h:buffalo_inc:whr_1166dhp3:*:*:*:*:*:*:*:*
    Create a notification for this product.
    buffalo_inc whr_1166dhp4 Affected: 0 , ≤ 2.95 (custom)
        cpe:2.3:h:buffalo_inc:whr_1166dhp4:*:*:*:*:*:*:*:*
    Create a notification for this product.
    buffalo_inc wsr_1166dhp3 Affected: 0 , ≤ 1.18 (custom)
        cpe:2.3:h:buffalo_inc:wsr_1166dhp3:*:*:*:*:*:*:*:*
    Create a notification for this product.
    buffalo_inc wsr_600dhp Affected: 0 , ≤ 2.93 (custom)
        cpe:2.3:h:buffalo_inc:wsr_600dhp:*:*:*:*:*:*:*:*
    Create a notification for this product.
    buffalo_inc wex_300hptxn Affected: 0 , ≤ 1.02 (custom)
        cpe:2.3:h:buffalo_inc:wex_300hptxn:*:*:*:*:*:*:*:*
    Create a notification for this product.
    buffalo_inc wex_733dhp2 Affected: 0 , ≤ 1.03 (custom)
        cpe:2.3:h:buffalo_inc:wex_733dhp2:*:*:*:*:*:*:*:*
    Create a notification for this product.
    buffalo_inc wex_1166dhp2 Affected: 0 , ≤ 1.05 (custom)
        cpe:2.3:h:buffalo_inc:wex_1166dhp2:*:*:*:*:*:*:*:*
    Create a notification for this product.
    buffalo_inc wex_1166dhps Affected: 0 , ≤ 1.05 (custom)
        cpe:2.3:h:buffalo_inc:wex_1166dhps:*:*:*:*:*:*:*:*
    Create a notification for this product.
    buffalo_inc wex_300hpsn Affected: 0 , ≤ 1.02 (custom)
        cpe:2.3:h:buffalo_inc:wex_300hpsn:*:*:*:*:*:*:*:*
    Create a notification for this product.
    buffalo_inc wex_733dhps Affected: 0 , ≤ 1.02 (custom)
        cpe:2.3:h:buffalo_inc:wex_733dhps:*:*:*:*:*:*:*:*
    Create a notification for this product.
    buffalo_inc wex_733hptx Affected: 0 , ≤ 1.03 (custom)
        cpe:2.3:h:buffalo_inc:wex_733hptx:*:*:*:*:*:*:*:*
    Create a notification for this product.
    buffalo_inc wex_1166dhp Affected: 0 , ≤ 1.23 (custom)
        cpe:2.3:h:buffalo_inc:wex_1166dhp:*:*:*:*:*:*:*:*
    Create a notification for this product.
    buffalo_inc wex_733dhp Affected: 0 , ≤ 1.64 (custom)
        cpe:2.3:h:buffalo_inc:wex_733dhp:*:*:*:*:*:*:*:*
    Create a notification for this product.
    buffalo_inc whr_1166dhp Affected: 0 , ≤ 2.92 (custom)
        cpe:2.3:h:buffalo_inc:whr_1166dhp:*:*:*:*:*:*:*:*
    Create a notification for this product.
    buffalo_inc whr_300hp2 Affected: 0 , ≤ 2.51 (custom)
        cpe:2.3:h:buffalo_inc:whr_300hp2:*:*:*:*:*:*:*:*
    Create a notification for this product.
    buffalo_inc whr_600d Affected: 0 , ≤ 2.91 (custom)
        cpe:2.3:h:buffalo_inc:whr_600d:*:*:*:*:*:*:*:*
    Create a notification for this product.
    buffalo_inc wmr_300 Affected: 0 , ≤ 2.50 (custom)
        cpe:2.3:h:buffalo_inc:wmr_300:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:h:buffalo_inc:whr_1166dhp2:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "whr_1166dhp2",
                "vendor": "buffalo_inc",
                "versions": [
                  {
                    "lessThanOrEqual": "2.95",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:buffalo_inc:whr_1166dhp3:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "whr_1166dhp3",
                "vendor": "buffalo_inc",
                "versions": [
                  {
                    "lessThanOrEqual": "2.95",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:buffalo_inc:whr_1166dhp4:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "whr_1166dhp4",
                "vendor": "buffalo_inc",
                "versions": [
                  {
                    "lessThanOrEqual": "2.95",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:buffalo_inc:wsr_1166dhp3:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "wsr_1166dhp3",
                "vendor": "buffalo_inc",
                "versions": [
                  {
                    "lessThanOrEqual": "1.18",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:buffalo_inc:wsr_600dhp:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "wsr_600dhp",
                "vendor": "buffalo_inc",
                "versions": [
                  {
                    "lessThanOrEqual": "2.93",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:buffalo_inc:wex_300hptxn:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "wex_300hptxn",
                "vendor": "buffalo_inc",
                "versions": [
                  {
                    "lessThanOrEqual": "1.02",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:buffalo_inc:wex_733dhp2:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "wex_733dhp2",
                "vendor": "buffalo_inc",
                "versions": [
                  {
                    "lessThanOrEqual": "1.03",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:buffalo_inc:wex_1166dhp2:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "wex_1166dhp2",
                "vendor": "buffalo_inc",
                "versions": [
                  {
                    "lessThanOrEqual": "1.05",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:buffalo_inc:wex_1166dhps:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "wex_1166dhps",
                "vendor": "buffalo_inc",
                "versions": [
                  {
                    "lessThanOrEqual": "1.05",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:buffalo_inc:wex_300hpsn:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "wex_300hpsn",
                "vendor": "buffalo_inc",
                "versions": [
                  {
                    "lessThanOrEqual": "1.02",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:buffalo_inc:wex_733dhps:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "wex_733dhps",
                "vendor": "buffalo_inc",
                "versions": [
                  {
                    "lessThanOrEqual": "1.02",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:buffalo_inc:wex_733hptx:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "wex_733hptx",
                "vendor": "buffalo_inc",
                "versions": [
                  {
                    "lessThanOrEqual": "1.03",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:buffalo_inc:wex_1166dhp:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "wex_1166dhp",
                "vendor": "buffalo_inc",
                "versions": [
                  {
                    "lessThanOrEqual": "1.23",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:buffalo_inc:wex_733dhp:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "wex_733dhp",
                "vendor": "buffalo_inc",
                "versions": [
                  {
                    "lessThanOrEqual": "1.64",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:buffalo_inc:whr_1166dhp:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "whr_1166dhp",
                "vendor": "buffalo_inc",
                "versions": [
                  {
                    "lessThanOrEqual": "2.92",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:buffalo_inc:whr_300hp2:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "whr_300hp2",
                "vendor": "buffalo_inc",
                "versions": [
                  {
                    "lessThanOrEqual": "2.51",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:buffalo_inc:whr_600d:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "whr_600d",
                "vendor": "buffalo_inc",
                "versions": [
                  {
                    "lessThanOrEqual": "2.91",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:buffalo_inc:wmr_300:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "wmr_300",
                "vendor": "buffalo_inc",
                "versions": [
                  {
                    "lessThanOrEqual": "2.50",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "ADJACENT_NETWORK",
                  "availabilityImpact": "LOW",
                  "baseScore": 5.7,
                  "baseSeverity": "MEDIUM",
                  "confidentialityImpact": "LOW",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "HIGH",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:L",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-44072",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-09-10T18:57:48.477370Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-78",
                    "description": "CWE-78 Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-09-10T19:58:39.140Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "WHR-1166DHP2",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver. 2.95 and earlier"
                }
              ]
            },
            {
              "product": "WHR-1166DHP3",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver. 2.95 and earlier"
                }
              ]
            },
            {
              "product": "WHR-1166DHP4",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver. 2.95 and earlier"
                }
              ]
            },
            {
              "product": "WSR-1166DHP3",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver. 1.18 and earlier"
                }
              ]
            },
            {
              "product": "WSR-600DHP",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver. 2.93 and earlier"
                }
              ]
            },
            {
              "product": "WEX-300HPTX/N",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver. 1.02 and earlier"
                }
              ]
            },
            {
              "product": "WEX-733DHP2",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver. 1.03 and earlier"
                }
              ]
            },
            {
              "product": "WEX-1166DHP2",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver. 1.05 and earlier"
                }
              ]
            },
            {
              "product": "WEX-1166DHPS",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver. 1.05 and earlier"
                }
              ]
            },
            {
              "product": "WEX-300HPS/N",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver. 1.02 and earlier"
                }
              ]
            },
            {
              "product": "WEX-733DHPS",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver. 1.02 and earlier"
                }
              ]
            },
            {
              "product": "WEX-733DHPTX",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver. 1.03 and earlier"
                }
              ]
            },
            {
              "product": "WEX-1166DHP",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver. 1.23 and earlier"
                }
              ]
            },
            {
              "product": "WEX-733DHP",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver. 1.64 and earlier"
                }
              ]
            },
            {
              "product": "WHR-1166DHP",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver. 2.92 and earlier"
                }
              ]
            },
            {
              "product": "WHR-300HP2",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver. 2.51 and earlier"
                }
              ]
            },
            {
              "product": "WHR-600D",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver. 2.91 and earlier"
                }
              ]
            },
            {
              "product": "WMR-300",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver. 2.50 and earlier"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "OS command injection vulnerability exists in BUFFALO wireless LAN routers and wireless LAN repeaters. If a user logs in to the management page and sends a specially crafted request to the affected product from the product\u0027s specific management page, an arbitrary OS command may be executed."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "OS command injection",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-09-10T06:56:44.182Z",
            "orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
            "shortName": "jpcert"
          },
          "references": [
            {
              "url": "https://www.buffalo.jp/news/detail/20240719-01.html"
            },
            {
              "url": "https://jvn.jp/en/jp/JVN12824024/"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
        "assignerShortName": "jpcert",
        "cveId": "CVE-2024-44072",
        "datePublished": "2024-09-10T06:56:44.182Z",
        "dateReserved": "2024-08-19T02:08:40.600Z",
        "dateUpdated": "2024-09-10T19:58:39.140Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-26023 (GCVE-0-2024-26023)

    Vulnerability from nvd – Published: 2024-04-15 10:51 – Updated: 2024-08-01 23:59
    VLAI
    Summary
    OS command injection vulnerability in BUFFALO wireless LAN routers allows a logged-in user to execute arbitrary OS commands.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • OS command injection
    • CWE-78 - Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
    Assigner
    Impacted products
    Vendor Product Version
    BUFFALO INC. WCR-1166DS Affected: firmware Ver. 1.32 and earlier
    Create a notification for this product.
    BUFFALO INC. WSR-1166DHP Affected: firmware Ver. 1.14 and earlier
    Create a notification for this product.
    BUFFALO INC. WSR-1166DHP2 Affected: firmware Ver. 1.14 and earlier
    Create a notification for this product.
    BUFFALO INC. WSR-2533DHP Affected: firmware Ver. 1.06 and earlier
    Create a notification for this product.
    BUFFALO INC. WSR-2533DHPL Affected: firmware Ver. 1.06 and earlier
    Create a notification for this product.
    BUFFALO INC. WSR-2533DHP2 Affected: firmware Ver. 1.10 and earlier
    Create a notification for this product.
    BUFFALO INC. WSR-A2533DHP2 Affected: firmware Ver. 1.10 and earlier
    Create a notification for this product.
    buffalo_inc wcr_1166ds Affected: 0 , ≤ 1.32 (custom)
        cpe:2.3:h:buffalo_inc:wcr_1166ds:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:h:buffalo_inc:wcr_1166ds:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "wcr_1166ds",
                "vendor": "buffalo_inc",
                "versions": [
                  {
                    "lessThanOrEqual": "1.32",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "LOW",
                  "baseScore": 4.2,
                  "baseSeverity": "MEDIUM",
                  "confidentialityImpact": "LOW",
                  "integrityImpact": "LOW",
                  "privilegesRequired": "HIGH",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-26023",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-07-15T16:06:58.717753Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-78",
                    "description": "CWE-78 Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-07-15T16:10:17.826Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-01T23:59:31.288Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.buffalo.jp/news/detail/20240410-01.html"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://jvn.jp/en/jp/JVN58236836/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "WCR-1166DS",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "firmware Ver. 1.32 and earlier"
                }
              ]
            },
            {
              "product": "WSR-1166DHP",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "firmware Ver. 1.14 and earlier"
                }
              ]
            },
            {
              "product": "WSR-1166DHP2",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "firmware Ver. 1.14 and earlier"
                }
              ]
            },
            {
              "product": "WSR-2533DHP",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "firmware Ver. 1.06 and earlier"
                }
              ]
            },
            {
              "product": "WSR-2533DHPL",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "firmware Ver. 1.06 and earlier"
                }
              ]
            },
            {
              "product": "WSR-2533DHP2",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "firmware Ver. 1.10 and earlier"
                }
              ]
            },
            {
              "product": "WSR-A2533DHP2",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "firmware Ver. 1.10 and earlier"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "OS command injection vulnerability in BUFFALO wireless LAN routers allows a logged-in user to execute arbitrary OS commands."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "OS command injection",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-04-15T10:51:04.093Z",
            "orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
            "shortName": "jpcert"
          },
          "references": [
            {
              "url": "https://www.buffalo.jp/news/detail/20240410-01.html"
            },
            {
              "url": "https://jvn.jp/en/jp/JVN58236836/"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
        "assignerShortName": "jpcert",
        "cveId": "CVE-2024-26023",
        "datePublished": "2024-04-15T10:51:04.093Z",
        "dateReserved": "2024-03-19T02:22:43.480Z",
        "dateUpdated": "2024-08-01T23:59:31.288Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-23486 (GCVE-0-2024-23486)

    Vulnerability from nvd – Published: 2024-04-15 10:50 – Updated: 2025-03-18 20:05
    VLAI
    Summary
    Plaintext storage of a password issue exists in BUFFALO wireless LAN routers, which may allow a network-adjacent unauthenticated attacker with access to the product's login page may obtain configured credentials.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Plaintext Storage of a Password
    • CWE-256 - Plaintext Storage of a Password
    Assigner
    Impacted products
    Vendor Product Version
    BUFFALO INC. WSR-2533DHP Affected: firmware Ver. 1.06 and earlier
    Create a notification for this product.
    BUFFALO INC. WSR-2533DHPL Affected: firmware Ver. 1.06 and earlier
    Create a notification for this product.
    BUFFALO INC. WSR-2533DHP2 Affected: firmware Ver. 1.10 and earlier
    Create a notification for this product.
    BUFFALO INC. WSR-A2533DHP2 Affected: firmware Ver. 1.10 and earlier
    Create a notification for this product.
    buffalo_inc wsr-2533dhp2 Affected: 0 , < 1.06 (custom)
        cpe:2.3:a:buffalo_inc:wsr-2533dhp2:1.06:*:*:*:*:*:*:*
    Create a notification for this product.
    buffalo_inc a2533dhp2 Affected: 0 , < 1.06 (custom)
        cpe:2.3:a:buffalo_inc:a2533dhp2:1.06:*:*:*:*:*:*:*
    Create a notification for this product.
    buffalo a2533dhp2 Affected: 0 , < 1,06 (custom)
        cpe:2.3:a:buffalo:a2533dhp2:1.06:*:*:*:*:*:*:*
    Create a notification for this product.
    buffalo wsr-2533dhpl Affected: 0 , < 1.06 (custom)
        cpe:2.3:a:buffalo:wsr-2533dhpl:1.06:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:buffalo_inc:wsr-2533dhp2:1.06:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "wsr-2533dhp2",
                "vendor": "buffalo_inc",
                "versions": [
                  {
                    "lessThan": "1.06",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:a:buffalo_inc:a2533dhp2:1.06:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "a2533dhp2",
                "vendor": "buffalo_inc",
                "versions": [
                  {
                    "lessThan": "1.06",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:a:buffalo:a2533dhp2:1.06:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "a2533dhp2",
                "vendor": "buffalo",
                "versions": [
                  {
                    "lessThan": "1,06",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:a:buffalo:wsr-2533dhpl:1.06:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "wsr-2533dhpl",
                "vendor": "buffalo",
                "versions": [
                  {
                    "lessThan": "1.06",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "HIGH",
                  "baseScore": 9.8,
                  "baseSeverity": "CRITICAL",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "NONE",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-23486",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-04-17T20:26:00.951617Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-256",
                    "description": "CWE-256 Plaintext Storage of a Password",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-03-18T20:05:21.115Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-01T23:06:24.713Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.buffalo.jp/news/detail/20240410-01.html"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://jvn.jp/en/jp/JVN58236836/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "WSR-2533DHP",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "firmware Ver. 1.06 and earlier"
                }
              ]
            },
            {
              "product": "WSR-2533DHPL",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "firmware Ver. 1.06 and earlier"
                }
              ]
            },
            {
              "product": "WSR-2533DHP2",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "firmware Ver. 1.10 and earlier"
                }
              ]
            },
            {
              "product": "WSR-A2533DHP2",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "firmware Ver. 1.10 and earlier"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Plaintext storage of a password issue exists in BUFFALO wireless LAN routers, which may allow a network-adjacent unauthenticated attacker with access to the product\u0027s login page may obtain configured credentials."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Plaintext Storage of a Password",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-04-15T10:50:01.778Z",
            "orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
            "shortName": "jpcert"
          },
          "references": [
            {
              "url": "https://www.buffalo.jp/news/detail/20240410-01.html"
            },
            {
              "url": "https://jvn.jp/en/jp/JVN58236836/"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
        "assignerShortName": "jpcert",
        "cveId": "CVE-2024-23486",
        "datePublished": "2024-04-15T10:50:01.778Z",
        "dateReserved": "2024-03-19T02:22:42.654Z",
        "dateUpdated": "2025-03-18T20:05:21.115Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-51363 (GCVE-0-2023-51363)

    Vulnerability from nvd – Published: 2023-12-26 07:30 – Updated: 2024-08-02 22:32
    VLAI
    Summary
    VR-S1000 firmware Ver. 2.37 and earlier allows a network-adjacent unauthenticated attacker who can access the product's web management page to obtain sensitive information.
    Severity
    No CVSS data available.
    CWE
    • Information disclosure
    Assigner
    Impacted products
    Vendor Product Version
    BUFFALO INC. VR-S1000 Affected: firmware Ver. 2.37 and earlier
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T22:32:09.188Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.buffalo.jp/news/detail/20231225-01.html"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://jvn.jp/en/jp/JVN23771490/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "VR-S1000",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "firmware Ver. 2.37 and earlier"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "VR-S1000 firmware Ver. 2.37 and earlier allows a network-adjacent unauthenticated attacker who can access the product\u0027s web management page to obtain sensitive information."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Information disclosure",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-26T07:30:12.168Z",
            "orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
            "shortName": "jpcert"
          },
          "references": [
            {
              "url": "https://www.buffalo.jp/news/detail/20231225-01.html"
            },
            {
              "url": "https://jvn.jp/en/jp/JVN23771490/"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
        "assignerShortName": "jpcert",
        "cveId": "CVE-2023-51363",
        "datePublished": "2023-12-26T07:30:12.168Z",
        "dateReserved": "2023-12-18T12:18:02.891Z",
        "dateUpdated": "2024-08-02T22:32:09.188Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2026-33366 (GCVE-0-2026-33366)

    Vulnerability from cvelistv5 – Published: 2026-03-27 05:25 – Updated: 2026-03-27 19:37
    VLAI
    Summary
    Missing authentication for critical function vulnerability in BUFFALO Wi-Fi router products may allow an attacker to forcibly reboot the product without authentication.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-306 - Missing authentication for critical function
    Assigner
    Impacted products
    Vendor Product Version
    BUFFALO INC. BUFFALO Wi-Fi router products Affected: See "References" section
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-33366",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-03-27T19:37:40.586444Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-03-27T19:37:52.746Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "BUFFALO Wi-Fi router products",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "See \"References\" section"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Missing authentication for critical function vulnerability in BUFFALO Wi-Fi router products may allow an attacker to forcibly reboot the product without authentication."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
                "version": "3.0"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            },
            {
              "cvssV4_0": {
                "baseScore": 6.9,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
                "version": "4.0"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-306",
                  "description": "Missing authentication for critical function",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-03-27T05:25:58.656Z",
            "orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
            "shortName": "jpcert"
          },
          "references": [
            {
              "url": "https://www.buffalo.jp/news/detail/20260323-01.html"
            },
            {
              "url": "https://jvn.jp/en/jp/JVN83788689/"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
        "assignerShortName": "jpcert",
        "cveId": "CVE-2026-33366",
        "datePublished": "2026-03-27T05:25:58.656Z",
        "dateReserved": "2026-03-25T06:25:35.445Z",
        "dateUpdated": "2026-03-27T19:37:52.746Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-33280 (GCVE-0-2026-33280)

    Vulnerability from cvelistv5 – Published: 2026-03-27 05:25 – Updated: 2026-03-27 19:54
    VLAI
    Summary
    Hidden functionality issue exists in BUFFALO Wi-Fi router products, which may allow an attacker to gain access to the product’s debugging functionality, resulting in the execution of arbitrary OS commands.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    BUFFALO INC. BUFFALO Wi-Fi router products Affected: See "References" section
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-33280",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-03-27T19:53:56.292921Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-03-27T19:54:05.856Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "BUFFALO Wi-Fi router products",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "See \"References\" section"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Hidden functionality issue exists in BUFFALO Wi-Fi router products, which may allow an attacker to gain access to the product\u2019s debugging functionality, resulting in the execution of arbitrary OS commands."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "baseScore": 7.2,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.0"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            },
            {
              "cvssV4_0": {
                "baseScore": 8.6,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
                "version": "4.0"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-912",
                  "description": "Hidden functionality",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-03-27T05:25:41.078Z",
            "orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
            "shortName": "jpcert"
          },
          "references": [
            {
              "url": "https://www.buffalo.jp/news/detail/20260323-01.html"
            },
            {
              "url": "https://jvn.jp/en/jp/JVN83788689/"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
        "assignerShortName": "jpcert",
        "cveId": "CVE-2026-33280",
        "datePublished": "2026-03-27T05:25:41.078Z",
        "dateReserved": "2026-03-25T06:25:26.636Z",
        "dateUpdated": "2026-03-27T19:54:05.856Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-32678 (GCVE-0-2026-32678)

    Vulnerability from cvelistv5 – Published: 2026-03-27 05:25 – Updated: 2026-03-27 19:53
    VLAI
    Summary
    Authentication bypass issue exists in BUFFALO Wi-Fi router products, which may allow an attacker to alter critical configuration settings without authentication.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-288 - Authentication Bypass Using an Alternate Path or Channel
    Assigner
    Impacted products
    Vendor Product Version
    BUFFALO INC. BUFFALO Wi-Fi router products Affected: See "References" section
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-32678",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-03-27T19:53:10.762357Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-03-27T19:53:19.116Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "BUFFALO Wi-Fi router products",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "See \"References\" section"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Authentication bypass issue exists in BUFFALO Wi-Fi router products, which may allow an attacker to alter critical configuration settings without authentication."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
                "version": "3.0"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            },
            {
              "cvssV4_0": {
                "baseScore": 8.7,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N",
                "version": "4.0"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-288",
                  "description": "Authentication Bypass Using an Alternate Path or Channel",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-03-27T05:25:19.851Z",
            "orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
            "shortName": "jpcert"
          },
          "references": [
            {
              "url": "https://www.buffalo.jp/news/detail/20260323-01.html"
            },
            {
              "url": "https://jvn.jp/en/jp/JVN83788689/"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
        "assignerShortName": "jpcert",
        "cveId": "CVE-2026-32678",
        "datePublished": "2026-03-27T05:25:19.851Z",
        "dateReserved": "2026-03-25T06:25:32.059Z",
        "dateUpdated": "2026-03-27T19:53:19.116Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-32669 (GCVE-0-2026-32669)

    Vulnerability from cvelistv5 – Published: 2026-03-27 05:24 – Updated: 2026-03-27 19:52
    VLAI
    Summary
    Code injection vulnerability exists in BUFFALO Wi-Fi router products. If this vulnerability is exploited, an arbitrary code may be executed on the products.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    BUFFALO INC. BUFFALO Wi-Fi router products Affected: See "References" section
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-32669",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-03-27T19:52:27.020391Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-03-27T19:52:38.686Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "BUFFALO Wi-Fi router products",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "See \"References\" section"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Code injection vulnerability exists in BUFFALO Wi-Fi router products. If this vulnerability is exploited, an arbitrary code may be executed on the products."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "baseScore": 8.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            },
            {
              "cvssV4_0": {
                "baseScore": 8.7,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
                "version": "4.0"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-94",
                  "description": "Code injection",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-03-27T05:24:52.376Z",
            "orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
            "shortName": "jpcert"
          },
          "references": [
            {
              "url": "https://www.buffalo.jp/news/detail/20260323-01.html"
            },
            {
              "url": "https://jvn.jp/en/jp/JVN83788689/"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
        "assignerShortName": "jpcert",
        "cveId": "CVE-2026-32669",
        "datePublished": "2026-03-27T05:24:52.376Z",
        "dateReserved": "2026-03-25T06:25:33.514Z",
        "dateUpdated": "2026-03-27T19:52:38.686Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-27650 (GCVE-0-2026-27650)

    Vulnerability from cvelistv5 – Published: 2026-03-27 05:24 – Updated: 2026-03-27 19:58
    VLAI
    Summary
    OS Command Injection vulnerability exists in BUFFALO Wi-Fi router products. If this vulnerability is exploited, an arbitrary OS command may be executed on the products.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-78 - Improper neutralization of special elements used in an OS command ('OS Command Injection')
    Assigner
    Impacted products
    Vendor Product Version
    BUFFALO INC. BUFFALO Wi-Fi router products Affected: See "References" section
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-27650",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-03-27T19:58:33.808324Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-03-27T19:58:51.644Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "BUFFALO Wi-Fi router products",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "See \"References\" section"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "OS Command Injection vulnerability exists in BUFFALO Wi-Fi router products. If this vulnerability is exploited, an arbitrary OS command may be executed on the products."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "baseScore": 8.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            },
            {
              "cvssV4_0": {
                "baseScore": 8.6,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
                "version": "4.0"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-78",
                  "description": "Improper neutralization of special elements used in an OS command (\u0027OS Command Injection\u0027)",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-03-27T05:24:35.501Z",
            "orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
            "shortName": "jpcert"
          },
          "references": [
            {
              "url": "https://www.buffalo.jp/news/detail/20260323-01.html"
            },
            {
              "url": "https://jvn.jp/en/jp/JVN83788689/"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
        "assignerShortName": "jpcert",
        "cveId": "CVE-2026-27650",
        "datePublished": "2026-03-27T05:24:35.501Z",
        "dateReserved": "2026-03-25T06:25:30.930Z",
        "dateUpdated": "2026-03-27T19:58:51.644Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-46413 (GCVE-0-2025-46413)

    Vulnerability from cvelistv5 – Published: 2025-11-07 08:51 – Updated: 2025-11-07 13:15
    VLAI
    Summary
    Use of password hash with insufficient computational effort issue exists in BUFFALO Wi-Fi router 'WSR-1800AX4 series'. When WPS is enabled, PIN code and/or Wi-Fi password may be obtained by an attacker.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-916 - Use of password hash with insufficient computational effort
    Assigner
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-46413",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-11-07T13:14:56.223820Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-11-07T13:15:18.610Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "WSR-1800AX4",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "prior to Ver.1.09"
                }
              ]
            },
            {
              "product": "WSR-1800AX4S",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "prior to Ver.1.11"
                }
              ]
            },
            {
              "product": "WSR-1800AX4B",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "prior to Ver.1.11"
                }
              ]
            },
            {
              "product": "WSR-1800AX4-KH",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "prior to Ver.1.19"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Use of password hash with insufficient computational effort issue exists in BUFFALO Wi-Fi router \u0027WSR-1800AX4 series\u0027. When WPS is enabled, PIN code and/or Wi-Fi password may be obtained by an attacker."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "baseScore": 4.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
                "version": "3.0"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            },
            {
              "cvssV4_0": {
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
                "version": "4.0"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-916",
                  "description": "Use of password hash with insufficient computational effort",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-11-07T08:51:52.847Z",
            "orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
            "shortName": "jpcert"
          },
          "references": [
            {
              "url": "https://www.buffalo.jp/news/detail/20251107-01.html"
            },
            {
              "url": "https://jvn.jp/en/jp/JVN13754005/"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
        "assignerShortName": "jpcert",
        "cveId": "CVE-2025-46413",
        "datePublished": "2025-11-07T08:51:52.847Z",
        "dateReserved": "2025-10-30T02:34:37.562Z",
        "dateUpdated": "2025-11-07T13:15:18.610Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-61941 (GCVE-0-2025-61941)

    Vulnerability from cvelistv5 – Published: 2025-10-15 07:24 – Updated: 2025-10-15 16:03
    VLAI
    Summary
    A path traversal issue exists in WXR9300BE6P series firmware versions prior to Ver.1.10. Arbitrary file may be altered by an administrative user who logs in to the affected product. Moreover, arbitrary OS command may be executed via some file alteration.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-22 - Improper limitation of a pathname to a restricted directory ('Path Traversal')
    Assigner
    Impacted products
    Vendor Product Version
    BUFFALO INC. WXR9300BE6P series Affected: firmware versions prior to Ver.1.10
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-61941",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-15T16:00:39.955256Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-15T16:03:22.387Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "WXR9300BE6P series",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "firmware versions prior to Ver.1.10"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A path traversal issue exists in WXR9300BE6P series firmware versions prior to Ver.1.10. Arbitrary file may be altered by an administrative user who logs in to the affected product. Moreover, arbitrary OS command may be executed via some file alteration."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "baseScore": 7.2,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.0"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            },
            {
              "cvssV4_0": {
                "baseScore": 8.6,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
                "version": "4.0"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-22",
                  "description": "Improper limitation of a pathname to a restricted directory (\u0027Path Traversal\u0027)",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-10-15T07:24:09.131Z",
            "orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
            "shortName": "jpcert"
          },
          "references": [
            {
              "url": "https://www.buffalo.jp/news/detail/20251014-01.html"
            },
            {
              "url": "https://jvn.jp/en/vu/JVNVU96471278/"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
        "assignerShortName": "jpcert",
        "cveId": "CVE-2025-61941",
        "datePublished": "2025-10-15T07:24:09.131Z",
        "dateReserved": "2025-10-14T08:33:32.230Z",
        "dateUpdated": "2025-10-15T16:03:22.387Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2025-61871 (GCVE-0-2025-61871)

    Vulnerability from cvelistv5 – Published: 2025-10-10 04:52 – Updated: 2025-10-10 18:32
    VLAI
    Summary
    NAS Navigator2 Windows version by BUFFALO INC. registers a Windows service with an unquoted file path. A user with the write permission on the root directory of the system drive may execute arbitrary code with SYSTEM privilege.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-428 - Unquoted search path or element
    Assigner
    Impacted products
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-61871",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-10T18:32:36.026113Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-10T18:32:49.428Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "NAS Navigator2 (Windows version only)",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "prior to Ver.3.12.0"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "NAS Navigator2 Windows version by BUFFALO INC. registers a Windows service with an unquoted file path. A user with the write permission on the root directory of the system drive may execute arbitrary code with SYSTEM privilege."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "baseScore": 6.7,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.0"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            },
            {
              "cvssV4_0": {
                "baseScore": 8.4,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
                "version": "4.0"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-428",
                  "description": "Unquoted search path or element",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-10-10T04:52:17.112Z",
            "orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
            "shortName": "jpcert"
          },
          "references": [
            {
              "url": "https://www.buffalo.jp/news/detail/20251009-01.html"
            },
            {
              "url": "https://jvn.jp/en/jp/JVN69099112/"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
        "assignerShortName": "jpcert",
        "cveId": "CVE-2025-61871",
        "datePublished": "2025-10-10T04:52:17.112Z",
        "dateReserved": "2025-10-02T23:47:37.697Z",
        "dateUpdated": "2025-10-10T18:32:49.428Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-44072 (GCVE-0-2024-44072)

    Vulnerability from cvelistv5 – Published: 2024-09-10 06:56 – Updated: 2024-09-10 19:58
    VLAI
    Summary
    OS command injection vulnerability exists in BUFFALO wireless LAN routers and wireless LAN repeaters. If a user logs in to the management page and sends a specially crafted request to the affected product from the product's specific management page, an arbitrary OS command may be executed.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • OS command injection
    • CWE-78 - Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
    Assigner
    Impacted products
    Vendor Product Version
    BUFFALO INC. WHR-1166DHP2 Affected: Ver. 2.95 and earlier
    Create a notification for this product.
    BUFFALO INC. WHR-1166DHP3 Affected: Ver. 2.95 and earlier
    Create a notification for this product.
    BUFFALO INC. WHR-1166DHP4 Affected: Ver. 2.95 and earlier
    Create a notification for this product.
    BUFFALO INC. WSR-1166DHP3 Affected: Ver. 1.18 and earlier
    Create a notification for this product.
    BUFFALO INC. WSR-600DHP Affected: Ver. 2.93 and earlier
    Create a notification for this product.
    BUFFALO INC. WEX-300HPTX/N Affected: Ver. 1.02 and earlier
    Create a notification for this product.
    BUFFALO INC. WEX-733DHP2 Affected: Ver. 1.03 and earlier
    Create a notification for this product.
    BUFFALO INC. WEX-1166DHP2 Affected: Ver. 1.05 and earlier
    Create a notification for this product.
    BUFFALO INC. WEX-1166DHPS Affected: Ver. 1.05 and earlier
    Create a notification for this product.
    BUFFALO INC. WEX-300HPS/N Affected: Ver. 1.02 and earlier
    Create a notification for this product.
    BUFFALO INC. WEX-733DHPS Affected: Ver. 1.02 and earlier
    Create a notification for this product.
    BUFFALO INC. WEX-733DHPTX Affected: Ver. 1.03 and earlier
    Create a notification for this product.
    BUFFALO INC. WEX-1166DHP Affected: Ver. 1.23 and earlier
    Create a notification for this product.
    BUFFALO INC. WEX-733DHP Affected: Ver. 1.64 and earlier
    Create a notification for this product.
    BUFFALO INC. WHR-1166DHP Affected: Ver. 2.92 and earlier
    Create a notification for this product.
    BUFFALO INC. WHR-300HP2 Affected: Ver. 2.51 and earlier
    Create a notification for this product.
    BUFFALO INC. WHR-600D Affected: Ver. 2.91 and earlier
    Create a notification for this product.
    BUFFALO INC. WMR-300 Affected: Ver. 2.50 and earlier
    Create a notification for this product.
    buffalo_inc whr_1166dhp2 Affected: 0 , ≤ 2.95 (custom)
        cpe:2.3:h:buffalo_inc:whr_1166dhp2:*:*:*:*:*:*:*:*
    Create a notification for this product.
    buffalo_inc whr_1166dhp3 Affected: 0 , ≤ 2.95 (custom)
        cpe:2.3:h:buffalo_inc:whr_1166dhp3:*:*:*:*:*:*:*:*
    Create a notification for this product.
    buffalo_inc whr_1166dhp4 Affected: 0 , ≤ 2.95 (custom)
        cpe:2.3:h:buffalo_inc:whr_1166dhp4:*:*:*:*:*:*:*:*
    Create a notification for this product.
    buffalo_inc wsr_1166dhp3 Affected: 0 , ≤ 1.18 (custom)
        cpe:2.3:h:buffalo_inc:wsr_1166dhp3:*:*:*:*:*:*:*:*
    Create a notification for this product.
    buffalo_inc wsr_600dhp Affected: 0 , ≤ 2.93 (custom)
        cpe:2.3:h:buffalo_inc:wsr_600dhp:*:*:*:*:*:*:*:*
    Create a notification for this product.
    buffalo_inc wex_300hptxn Affected: 0 , ≤ 1.02 (custom)
        cpe:2.3:h:buffalo_inc:wex_300hptxn:*:*:*:*:*:*:*:*
    Create a notification for this product.
    buffalo_inc wex_733dhp2 Affected: 0 , ≤ 1.03 (custom)
        cpe:2.3:h:buffalo_inc:wex_733dhp2:*:*:*:*:*:*:*:*
    Create a notification for this product.
    buffalo_inc wex_1166dhp2 Affected: 0 , ≤ 1.05 (custom)
        cpe:2.3:h:buffalo_inc:wex_1166dhp2:*:*:*:*:*:*:*:*
    Create a notification for this product.
    buffalo_inc wex_1166dhps Affected: 0 , ≤ 1.05 (custom)
        cpe:2.3:h:buffalo_inc:wex_1166dhps:*:*:*:*:*:*:*:*
    Create a notification for this product.
    buffalo_inc wex_300hpsn Affected: 0 , ≤ 1.02 (custom)
        cpe:2.3:h:buffalo_inc:wex_300hpsn:*:*:*:*:*:*:*:*
    Create a notification for this product.
    buffalo_inc wex_733dhps Affected: 0 , ≤ 1.02 (custom)
        cpe:2.3:h:buffalo_inc:wex_733dhps:*:*:*:*:*:*:*:*
    Create a notification for this product.
    buffalo_inc wex_733hptx Affected: 0 , ≤ 1.03 (custom)
        cpe:2.3:h:buffalo_inc:wex_733hptx:*:*:*:*:*:*:*:*
    Create a notification for this product.
    buffalo_inc wex_1166dhp Affected: 0 , ≤ 1.23 (custom)
        cpe:2.3:h:buffalo_inc:wex_1166dhp:*:*:*:*:*:*:*:*
    Create a notification for this product.
    buffalo_inc wex_733dhp Affected: 0 , ≤ 1.64 (custom)
        cpe:2.3:h:buffalo_inc:wex_733dhp:*:*:*:*:*:*:*:*
    Create a notification for this product.
    buffalo_inc whr_1166dhp Affected: 0 , ≤ 2.92 (custom)
        cpe:2.3:h:buffalo_inc:whr_1166dhp:*:*:*:*:*:*:*:*
    Create a notification for this product.
    buffalo_inc whr_300hp2 Affected: 0 , ≤ 2.51 (custom)
        cpe:2.3:h:buffalo_inc:whr_300hp2:*:*:*:*:*:*:*:*
    Create a notification for this product.
    buffalo_inc whr_600d Affected: 0 , ≤ 2.91 (custom)
        cpe:2.3:h:buffalo_inc:whr_600d:*:*:*:*:*:*:*:*
    Create a notification for this product.
    buffalo_inc wmr_300 Affected: 0 , ≤ 2.50 (custom)
        cpe:2.3:h:buffalo_inc:wmr_300:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:h:buffalo_inc:whr_1166dhp2:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "whr_1166dhp2",
                "vendor": "buffalo_inc",
                "versions": [
                  {
                    "lessThanOrEqual": "2.95",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:buffalo_inc:whr_1166dhp3:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "whr_1166dhp3",
                "vendor": "buffalo_inc",
                "versions": [
                  {
                    "lessThanOrEqual": "2.95",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:buffalo_inc:whr_1166dhp4:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "whr_1166dhp4",
                "vendor": "buffalo_inc",
                "versions": [
                  {
                    "lessThanOrEqual": "2.95",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:buffalo_inc:wsr_1166dhp3:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "wsr_1166dhp3",
                "vendor": "buffalo_inc",
                "versions": [
                  {
                    "lessThanOrEqual": "1.18",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:buffalo_inc:wsr_600dhp:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "wsr_600dhp",
                "vendor": "buffalo_inc",
                "versions": [
                  {
                    "lessThanOrEqual": "2.93",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:buffalo_inc:wex_300hptxn:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "wex_300hptxn",
                "vendor": "buffalo_inc",
                "versions": [
                  {
                    "lessThanOrEqual": "1.02",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:buffalo_inc:wex_733dhp2:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "wex_733dhp2",
                "vendor": "buffalo_inc",
                "versions": [
                  {
                    "lessThanOrEqual": "1.03",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:buffalo_inc:wex_1166dhp2:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "wex_1166dhp2",
                "vendor": "buffalo_inc",
                "versions": [
                  {
                    "lessThanOrEqual": "1.05",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:buffalo_inc:wex_1166dhps:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "wex_1166dhps",
                "vendor": "buffalo_inc",
                "versions": [
                  {
                    "lessThanOrEqual": "1.05",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:buffalo_inc:wex_300hpsn:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "wex_300hpsn",
                "vendor": "buffalo_inc",
                "versions": [
                  {
                    "lessThanOrEqual": "1.02",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:buffalo_inc:wex_733dhps:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "wex_733dhps",
                "vendor": "buffalo_inc",
                "versions": [
                  {
                    "lessThanOrEqual": "1.02",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:buffalo_inc:wex_733hptx:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "wex_733hptx",
                "vendor": "buffalo_inc",
                "versions": [
                  {
                    "lessThanOrEqual": "1.03",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:buffalo_inc:wex_1166dhp:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "wex_1166dhp",
                "vendor": "buffalo_inc",
                "versions": [
                  {
                    "lessThanOrEqual": "1.23",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:buffalo_inc:wex_733dhp:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "wex_733dhp",
                "vendor": "buffalo_inc",
                "versions": [
                  {
                    "lessThanOrEqual": "1.64",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:buffalo_inc:whr_1166dhp:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "whr_1166dhp",
                "vendor": "buffalo_inc",
                "versions": [
                  {
                    "lessThanOrEqual": "2.92",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:buffalo_inc:whr_300hp2:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "whr_300hp2",
                "vendor": "buffalo_inc",
                "versions": [
                  {
                    "lessThanOrEqual": "2.51",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:buffalo_inc:whr_600d:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "whr_600d",
                "vendor": "buffalo_inc",
                "versions": [
                  {
                    "lessThanOrEqual": "2.91",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:buffalo_inc:wmr_300:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "wmr_300",
                "vendor": "buffalo_inc",
                "versions": [
                  {
                    "lessThanOrEqual": "2.50",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "ADJACENT_NETWORK",
                  "availabilityImpact": "LOW",
                  "baseScore": 5.7,
                  "baseSeverity": "MEDIUM",
                  "confidentialityImpact": "LOW",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "HIGH",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:L",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-44072",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-09-10T18:57:48.477370Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-78",
                    "description": "CWE-78 Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-09-10T19:58:39.140Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "WHR-1166DHP2",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver. 2.95 and earlier"
                }
              ]
            },
            {
              "product": "WHR-1166DHP3",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver. 2.95 and earlier"
                }
              ]
            },
            {
              "product": "WHR-1166DHP4",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver. 2.95 and earlier"
                }
              ]
            },
            {
              "product": "WSR-1166DHP3",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver. 1.18 and earlier"
                }
              ]
            },
            {
              "product": "WSR-600DHP",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver. 2.93 and earlier"
                }
              ]
            },
            {
              "product": "WEX-300HPTX/N",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver. 1.02 and earlier"
                }
              ]
            },
            {
              "product": "WEX-733DHP2",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver. 1.03 and earlier"
                }
              ]
            },
            {
              "product": "WEX-1166DHP2",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver. 1.05 and earlier"
                }
              ]
            },
            {
              "product": "WEX-1166DHPS",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver. 1.05 and earlier"
                }
              ]
            },
            {
              "product": "WEX-300HPS/N",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver. 1.02 and earlier"
                }
              ]
            },
            {
              "product": "WEX-733DHPS",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver. 1.02 and earlier"
                }
              ]
            },
            {
              "product": "WEX-733DHPTX",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver. 1.03 and earlier"
                }
              ]
            },
            {
              "product": "WEX-1166DHP",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver. 1.23 and earlier"
                }
              ]
            },
            {
              "product": "WEX-733DHP",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver. 1.64 and earlier"
                }
              ]
            },
            {
              "product": "WHR-1166DHP",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver. 2.92 and earlier"
                }
              ]
            },
            {
              "product": "WHR-300HP2",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver. 2.51 and earlier"
                }
              ]
            },
            {
              "product": "WHR-600D",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver. 2.91 and earlier"
                }
              ]
            },
            {
              "product": "WMR-300",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver. 2.50 and earlier"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "OS command injection vulnerability exists in BUFFALO wireless LAN routers and wireless LAN repeaters. If a user logs in to the management page and sends a specially crafted request to the affected product from the product\u0027s specific management page, an arbitrary OS command may be executed."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "OS command injection",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-09-10T06:56:44.182Z",
            "orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
            "shortName": "jpcert"
          },
          "references": [
            {
              "url": "https://www.buffalo.jp/news/detail/20240719-01.html"
            },
            {
              "url": "https://jvn.jp/en/jp/JVN12824024/"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
        "assignerShortName": "jpcert",
        "cveId": "CVE-2024-44072",
        "datePublished": "2024-09-10T06:56:44.182Z",
        "dateReserved": "2024-08-19T02:08:40.600Z",
        "dateUpdated": "2024-09-10T19:58:39.140Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-26023 (GCVE-0-2024-26023)

    Vulnerability from cvelistv5 – Published: 2024-04-15 10:51 – Updated: 2024-08-01 23:59
    VLAI
    Summary
    OS command injection vulnerability in BUFFALO wireless LAN routers allows a logged-in user to execute arbitrary OS commands.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • OS command injection
    • CWE-78 - Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
    Assigner
    Impacted products
    Vendor Product Version
    BUFFALO INC. WCR-1166DS Affected: firmware Ver. 1.32 and earlier
    Create a notification for this product.
    BUFFALO INC. WSR-1166DHP Affected: firmware Ver. 1.14 and earlier
    Create a notification for this product.
    BUFFALO INC. WSR-1166DHP2 Affected: firmware Ver. 1.14 and earlier
    Create a notification for this product.
    BUFFALO INC. WSR-2533DHP Affected: firmware Ver. 1.06 and earlier
    Create a notification for this product.
    BUFFALO INC. WSR-2533DHPL Affected: firmware Ver. 1.06 and earlier
    Create a notification for this product.
    BUFFALO INC. WSR-2533DHP2 Affected: firmware Ver. 1.10 and earlier
    Create a notification for this product.
    BUFFALO INC. WSR-A2533DHP2 Affected: firmware Ver. 1.10 and earlier
    Create a notification for this product.
    buffalo_inc wcr_1166ds Affected: 0 , ≤ 1.32 (custom)
        cpe:2.3:h:buffalo_inc:wcr_1166ds:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:h:buffalo_inc:wcr_1166ds:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "wcr_1166ds",
                "vendor": "buffalo_inc",
                "versions": [
                  {
                    "lessThanOrEqual": "1.32",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "LOW",
                  "baseScore": 4.2,
                  "baseSeverity": "MEDIUM",
                  "confidentialityImpact": "LOW",
                  "integrityImpact": "LOW",
                  "privilegesRequired": "HIGH",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-26023",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-07-15T16:06:58.717753Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-78",
                    "description": "CWE-78 Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-07-15T16:10:17.826Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-01T23:59:31.288Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.buffalo.jp/news/detail/20240410-01.html"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://jvn.jp/en/jp/JVN58236836/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "WCR-1166DS",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "firmware Ver. 1.32 and earlier"
                }
              ]
            },
            {
              "product": "WSR-1166DHP",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "firmware Ver. 1.14 and earlier"
                }
              ]
            },
            {
              "product": "WSR-1166DHP2",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "firmware Ver. 1.14 and earlier"
                }
              ]
            },
            {
              "product": "WSR-2533DHP",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "firmware Ver. 1.06 and earlier"
                }
              ]
            },
            {
              "product": "WSR-2533DHPL",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "firmware Ver. 1.06 and earlier"
                }
              ]
            },
            {
              "product": "WSR-2533DHP2",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "firmware Ver. 1.10 and earlier"
                }
              ]
            },
            {
              "product": "WSR-A2533DHP2",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "firmware Ver. 1.10 and earlier"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "OS command injection vulnerability in BUFFALO wireless LAN routers allows a logged-in user to execute arbitrary OS commands."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "OS command injection",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-04-15T10:51:04.093Z",
            "orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
            "shortName": "jpcert"
          },
          "references": [
            {
              "url": "https://www.buffalo.jp/news/detail/20240410-01.html"
            },
            {
              "url": "https://jvn.jp/en/jp/JVN58236836/"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
        "assignerShortName": "jpcert",
        "cveId": "CVE-2024-26023",
        "datePublished": "2024-04-15T10:51:04.093Z",
        "dateReserved": "2024-03-19T02:22:43.480Z",
        "dateUpdated": "2024-08-01T23:59:31.288Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-23486 (GCVE-0-2024-23486)

    Vulnerability from cvelistv5 – Published: 2024-04-15 10:50 – Updated: 2025-03-18 20:05
    VLAI
    Summary
    Plaintext storage of a password issue exists in BUFFALO wireless LAN routers, which may allow a network-adjacent unauthenticated attacker with access to the product's login page may obtain configured credentials.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Plaintext Storage of a Password
    • CWE-256 - Plaintext Storage of a Password
    Assigner
    Impacted products
    Vendor Product Version
    BUFFALO INC. WSR-2533DHP Affected: firmware Ver. 1.06 and earlier
    Create a notification for this product.
    BUFFALO INC. WSR-2533DHPL Affected: firmware Ver. 1.06 and earlier
    Create a notification for this product.
    BUFFALO INC. WSR-2533DHP2 Affected: firmware Ver. 1.10 and earlier
    Create a notification for this product.
    BUFFALO INC. WSR-A2533DHP2 Affected: firmware Ver. 1.10 and earlier
    Create a notification for this product.
    buffalo_inc wsr-2533dhp2 Affected: 0 , < 1.06 (custom)
        cpe:2.3:a:buffalo_inc:wsr-2533dhp2:1.06:*:*:*:*:*:*:*
    Create a notification for this product.
    buffalo_inc a2533dhp2 Affected: 0 , < 1.06 (custom)
        cpe:2.3:a:buffalo_inc:a2533dhp2:1.06:*:*:*:*:*:*:*
    Create a notification for this product.
    buffalo a2533dhp2 Affected: 0 , < 1,06 (custom)
        cpe:2.3:a:buffalo:a2533dhp2:1.06:*:*:*:*:*:*:*
    Create a notification for this product.
    buffalo wsr-2533dhpl Affected: 0 , < 1.06 (custom)
        cpe:2.3:a:buffalo:wsr-2533dhpl:1.06:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:buffalo_inc:wsr-2533dhp2:1.06:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "wsr-2533dhp2",
                "vendor": "buffalo_inc",
                "versions": [
                  {
                    "lessThan": "1.06",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:a:buffalo_inc:a2533dhp2:1.06:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "a2533dhp2",
                "vendor": "buffalo_inc",
                "versions": [
                  {
                    "lessThan": "1.06",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:a:buffalo:a2533dhp2:1.06:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "a2533dhp2",
                "vendor": "buffalo",
                "versions": [
                  {
                    "lessThan": "1,06",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:a:buffalo:wsr-2533dhpl:1.06:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "wsr-2533dhpl",
                "vendor": "buffalo",
                "versions": [
                  {
                    "lessThan": "1.06",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "HIGH",
                  "baseScore": 9.8,
                  "baseSeverity": "CRITICAL",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "NONE",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-23486",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-04-17T20:26:00.951617Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-256",
                    "description": "CWE-256 Plaintext Storage of a Password",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-03-18T20:05:21.115Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-01T23:06:24.713Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.buffalo.jp/news/detail/20240410-01.html"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://jvn.jp/en/jp/JVN58236836/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "WSR-2533DHP",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "firmware Ver. 1.06 and earlier"
                }
              ]
            },
            {
              "product": "WSR-2533DHPL",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "firmware Ver. 1.06 and earlier"
                }
              ]
            },
            {
              "product": "WSR-2533DHP2",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "firmware Ver. 1.10 and earlier"
                }
              ]
            },
            {
              "product": "WSR-A2533DHP2",
              "vendor": "BUFFALO INC.",
              "versions": [
                {
                  "status": "affected",
                  "version": "firmware Ver. 1.10 and earlier"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Plaintext storage of a password issue exists in BUFFALO wireless LAN routers, which may allow a network-adjacent unauthenticated attacker with access to the product\u0027s login page may obtain configured credentials."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Plaintext Storage of a Password",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-04-15T10:50:01.778Z",
            "orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
            "shortName": "jpcert"
          },
          "references": [
            {
              "url": "https://www.buffalo.jp/news/detail/20240410-01.html"
            },
            {
              "url": "https://jvn.jp/en/jp/JVN58236836/"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
        "assignerShortName": "jpcert",
        "cveId": "CVE-2024-23486",
        "datePublished": "2024-04-15T10:50:01.778Z",
        "dateReserved": "2024-03-19T02:22:42.654Z",
        "dateUpdated": "2025-03-18T20:05:21.115Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }