CVE-2026-33366
- EPSS 0.13%
- Veröffentlicht 27.03.2026 05:25:58
- Zuletzt bearbeitet 31.03.2026 19:03:18
Missing authentication for critical function vulnerability in BUFFALO Wi-Fi router products may allow an attacker to forcibly reboot the product without authentication.
CVE-2026-33280
- EPSS 0.09%
- Veröffentlicht 27.03.2026 05:25:41
- Zuletzt bearbeitet 31.03.2026 19:03:40
Hidden functionality issue exists in BUFFALO Wi-Fi router products, which may allow an attacker to gain access to the product’s debugging functionality, resulting in the execution of arbitrary OS commands.
CVE-2026-32678
- EPSS 0.09%
- Veröffentlicht 27.03.2026 05:25:19
- Zuletzt bearbeitet 31.03.2026 19:03:48
Authentication bypass issue exists in BUFFALO Wi-Fi router products, which may allow an attacker to alter critical configuration settings without authentication.
CVE-2026-32669
- EPSS 0.04%
- Veröffentlicht 27.03.2026 05:24:52
- Zuletzt bearbeitet 31.03.2026 19:03:55
Code injection vulnerability exists in BUFFALO Wi-Fi router products. If this vulnerability is exploited, an arbitrary code may be executed on the products.
CVE-2026-27650
- EPSS 0.07%
- Veröffentlicht 27.03.2026 05:24:35
- Zuletzt bearbeitet 31.03.2026 19:04:01
OS Command Injection vulnerability exists in BUFFALO Wi-Fi router products. If this vulnerability is exploited, an arbitrary OS command may be executed on the products.
CVE-2022-40966
- EPSS 0.17%
- Veröffentlicht 07.12.2022 10:15:11
- Zuletzt bearbeitet 23.04.2025 16:15:25
Authentication bypass vulnerability in multiple Buffalo network devices allows a network-adjacent attacker to bypass authentication and access the device. The affected products/versions are as follows: WCR-300 firmware Ver. 1.87 and earlier, WHR-HP-G...
CVE-2016-4816
- EPSS 0.38%
- Veröffentlicht 19.06.2016 01:59:11
- Zuletzt bearbeitet 12.04.2025 10:46:40
BUFFALO WZR-600DHP3 devices with firmware 2.16 and earlier and WZR-S600DHP devices allow remote attackers to discover credentials and other sensitive information via unspecified vectors.