VYPR
Unrated severityNVD Advisory· Published Dec 19, 2022· Updated Apr 17, 2025

CVE-2022-43443

CVE-2022-43443

Description

OS command injection vulnerability in Buffalo network devices allows an network-adjacent attacker to execute an arbitrary OS command if a specially crafted request is sent to the management page.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

17
  • Range: firmware Ver. 1.34 and earlier
  • Range: firmware Ver. 1.16 and earlier
  • Range: firmware Ver. 1.17 and earlier
  • Buffalotech/WSR-2533DHP3cpe-rescue4 versions
    firmware Ver. 1.08 and earlier+ 3 more
    • (no CPE)range: firmware Ver. 1.08 and earlier
    • (no CPE)range: firmware Ver. 1.22 and earlier
    • (no CPE)range: firmware Ver. 1.26 and earlier
    • (no CPE)range: firmware Ver. 1.26 and earlier
  • Buffalotech/WSR-2533DHPL2cpe-rescue4 versions
    firmware Ver. 1.08 and earlier+ 3 more
    • (no CPE)range: firmware Ver. 1.08 and earlier
    • (no CPE)range: firmware Ver. 1.03 and earlier
    • (no CPE)range: firmware Ver. 1.05
    • (no CPE)range: firmware Ver. 1.07 and earlier
  • BUFFALO INC./WSR-3200AX4Bv5
    Range: firmware Ver. 1.25
  • BUFFALO INC./WSR-3200AX4Sv5
    Range: firmware Ver. 1.26 and earlier
  • BUFFALO INC./WSR-A2533DHP2v5
    Range: firmware Ver. 1.22 and earlier
  • BUFFALO INC./WXR-11000XE12v5
    Range: firmware Ver. 1.10 and earlier
  • BUFFALO INC./WXR-5700AX7Bv5
    Range: firmware Ver. 1.27 and earlier
  • BUFFALO INC./WXR-5700AX7Sv5
    Range: firmware Ver. 1.27 and earlier

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.