Description
OS command injection vulnerability exists in BUFFALO wireless LAN routers and wireless LAN repeaters. If a user logs in to the management page and sends a specially crafted request to the affected product from the product's specific management page, an arbitrary OS command may be executed.
CVSS breakdown
CVSS 3.1
Attack Vector
Adjacent
Attack Complexity
Low
Privileges Required
High
User Interaction
None
Scope
Unchanged
Confidentiality
Low
Integrity
High
Availability
Low
Affected products
- BUFFALO INC. / WEX-1166DHPVer. 1.23 and earlier – Ver. 1.23 and earlier
- BUFFALO INC. / WEX-1166DHP2Ver. 1.05 and earlier – Ver. 1.05 and earlier
- BUFFALO INC. / WEX-1166DHPSVer. 1.05 and earlier – Ver. 1.05 and earlier
- BUFFALO INC. / WEX-300HPS/NVer. 1.02 and earlier – Ver. 1.02 and earlier
- BUFFALO INC. / WEX-300HPTX/NVer. 1.02 and earlier – Ver. 1.02 and earlier
- BUFFALO INC. / WEX-733DHPVer. 1.64 and earlier – Ver. 1.64 and earlier
- BUFFALO INC. / WEX-733DHP2Ver. 1.03 and earlier – Ver. 1.03 and earlier
- BUFFALO INC. / WEX-733DHPSVer. 1.02 and earlier – Ver. 1.02 and earlier
- BUFFALO INC. / WEX-733DHPTXVer. 1.03 and earlier – Ver. 1.03 and earlier
- BUFFALO INC. / WHR-1166DHPVer. 2.92 and earlier – Ver. 2.92 and earlier
- BUFFALO INC. / WHR-1166DHP2Ver. 2.95 and earlier – Ver. 2.95 and earlier
- BUFFALO INC. / WHR-1166DHP3Ver. 2.95 and earlier – Ver. 2.95 and earlier
- BUFFALO INC. / WHR-1166DHP4Ver. 2.95 and earlier – Ver. 2.95 and earlier
- BUFFALO INC. / WHR-300HP2Ver. 2.51 and earlier – Ver. 2.51 and earlier
- BUFFALO INC. / WHR-600DVer. 2.91 and earlier – Ver. 2.91 and earlier
- BUFFALO INC. / WMR-300Ver. 2.50 and earlier – Ver. 2.50 and earlier
- BUFFALO INC. / WSR-1166DHP3Ver. 1.18 and earlier – Ver. 1.18 and earlier
- BUFFALO INC. / WSR-600DHPVer. 2.93 and earlier – Ver. 2.93 and earlier