Critical severity9.8NVD Advisory· Published Mar 27, 2026· Updated Mar 31, 2026

CVE-2026-33280

Description

Hidden functionality issue exists in BUFFALO Wi-Fi router products, which may allow an attacker to gain access to the product’s debugging functionality, resulting in the execution of arbitrary OS commands.

Affected products

Buffalo/Wcr 1166dhpl Firmware
cpe:2.3:o:buffalo:wcr-1166dhpl_firmware:*:*:*:*:*:*:*:*
Range: <1.01
Buffalo/Wsr3600be4 Kh Firmware
cpe:2.3:o:buffalo:wsr3600be4-kh_firmware:*:*:*:*:*:*:*:*
Range: <6.02
Buffalo/Wsr3600be4p Firmware
cpe:2.3:o:buffalo:wsr3600be4p_firmware:*:*:*:*:*:*:*:*
Range: <5.02
Buffalo/Wxr 1750dhp Firmware
cpe:2.3:o:buffalo:wxr-1750dhp_firmware:*:*:*:*:*:*:*:*
Range: <2.63
Buffalo/Wxr 1750dhp2 Firmware
cpe:2.3:o:buffalo:wxr-1750dhp2_firmware:*:*:*:*:*:*:*:*
Range: <2.63
Buffalo/Wxr18000be10p Firmware
cpe:2.3:o:buffalo:wxr18000be10p_firmware:*:*:*:*:*:*:*:*
Range: <5.03
Buffalo/Wxr 1900dhp Firmware
cpe:2.3:o:buffalo:wxr-1900dhp_firmware:*:*:*:*:*:*:*:*
Range: <2.53
Buffalo/Wxr 1900dhp2 Firmware
cpe:2.3:o:buffalo:wxr-1900dhp2_firmware:*:*:*:*:*:*:*:*
Range: <2.62
Buffalo/Wxr 1900dhp3 Firmware
cpe:2.3:o:buffalo:wxr-1900dhp3_firmware:*:*:*:*:*:*:*:*
Range: <2.66
Buffalo/Wxr 5950ax12 Firmware
cpe:2.3:o:buffalo:wxr-5950ax12_firmware:*:*:*:*:*:*:*:*
Range: <3.57
Buffalo/Wxr 6000ax12b Firmware
cpe:2.3:o:buffalo:wxr-6000ax12b_firmware:*:*:*:*:*:*:*:*
Range: <3.57
Buffalo/Wxr 6000ax12p Firmware
cpe:2.3:o:buffalo:wxr-6000ax12p_firmware:*:*:*:*:*:*:*:*
Range: <3.57
Buffalo/Wxr 6000ax12s Firmware
cpe:2.3:o:buffalo:wxr-6000ax12s_firmware:*:*:*:*:*:*:*:*
Range: <3.57
Buffalo/Wzr 1166dhp Firmware
cpe:2.3:o:buffalo:wzr-1166dhp_firmware:*:*:*:*:*:*:*:*
Range: <2.20
Buffalo/Wzr 1166dhp2 Firmware
cpe:2.3:o:buffalo:wzr-1166dhp2_firmware:*:*:*:*:*:*:*:*
Range: <2.20
Buffalo/Wzr 1750dhp Firmware
cpe:2.3:o:buffalo:wzr-1750dhp_firmware:*:*:*:*:*:*:*:*
Range: <2.32
Buffalo/Wzr 1750dhp2 Firmware
cpe:2.3:o:buffalo:wzr-1750dhp2_firmware:*:*:*:*:*:*:*:*
Range: <2.33
Buffalo/Wzr S1750dhp Firmware
cpe:2.3:o:buffalo:wzr-s1750dhp_firmware:*:*:*:*:*:*:*:*
Range: <2.34
Buffalo/Wrm D2133hp Firmware
cpe:2.3:o:buffalo:wrm-d2133hp_firmware:*:*:*:*:*:*:*:*
Range: <3.01
Buffalo/Wrm D2133hs Firmware
cpe:2.3:o:buffalo:wrm-d2133hs_firmware:*:*:*:*:*:*:*:*
Range: <3.01
Buffalo/Wtr M2133hp Firmware
cpe:2.3:o:buffalo:wtr-m2133hp_firmware:*:*:*:*:*:*:*:*
Range: <3.01
Buffalo/Wtr M2133hs Firmware
cpe:2.3:o:buffalo:wtr-m2133hs_firmware:*:*:*:*:*:*:*:*
Range: <3.01
Buffalo/Wem 1266 Firmware
cpe:2.3:o:buffalo:wem-1266_firmware:*:*:*:*:*:*:*:*
Range: <2.87
Buffalo/Wem 1266wp Firmware
cpe:2.3:o:buffalo:wem-1266wp_firmware:*:*:*:*:*:*:*:*
Range: <2.87
Buffalo/Vr U300w Firmware
cpe:2.3:o:buffalo:vr-u300w_firmware:*:*:*:*:*:*:*:*
Range: <1.42
Buffalo/Vr U500x Firmware
cpe:2.3:o:buffalo:vr-u500x_firmware:*:*:*:*:*:*:*:*
Range: <1.42
Buffalo/Wapm 1266r Firmware
cpe:2.3:o:buffalo:wapm-1266r_firmware:*:*:*:*:*:*:*:*
Range: <1.42
Buffalo/Wapm 1266wdpr Firmware
cpe:2.3:o:buffalo:wapm-1266wdpr_firmware:*:*:*:*:*:*:*:*
Range: <1.42
Buffalo/Wapm 1266wdpra Firmware
cpe:2.3:o:buffalo:wapm-1266wdpra_firmware:*:*:*:*:*:*:*:*
Range: <1.42
Buffalo/Wapm 1750d Firmware
cpe:2.3:o:buffalo:wapm-1750d_firmware:*:*:*:*:*:*:*:*
Range: <1.07
Buffalo/Wapm 2133r Firmware
cpe:2.3:o:buffalo:wapm-2133r_firmware:*:*:*:*:*:*:*:*
Range: <1.42
Buffalo/Wapm 2133tr Firmware
cpe:2.3:o:buffalo:wapm-2133tr_firmware:*:*:*:*:*:*:*:*
Range: <1.42
Buffalo/Wapm Ax4r Firmware
cpe:2.3:o:buffalo:wapm-ax4r_firmware:*:*:*:*:*:*:*:*
Range: <1.42
Buffalo/Wapm Ax8r Firmware
cpe:2.3:o:buffalo:wapm-ax8r_firmware:*:*:*:*:*:*:*:*
Range: <1.42
Buffalo/Wapm Axetr Firmware
cpe:2.3:o:buffalo:wapm-axetr_firmware:*:*:*:*:*:*:*:*
Range: <1.42
Buffalo/Waps 1266 Firmware
cpe:2.3:o:buffalo:waps-1266_firmware:*:*:*:*:*:*:*:*
Range: <1.42
Buffalo/Waps Ax4 Firmware
cpe:2.3:o:buffalo:waps-ax4_firmware:*:*:*:*:*:*:*:*
Range: <1.42
Buffalo/Fs M1266 Firmware
cpe:2.3:o:buffalo:fs-m1266_firmware:*:*:*:*:*:*:*:*
Range: <4.13
Buffalo/Fs S1266 Firmware
cpe:2.3:o:buffalo:fs-s1266_firmware:*:*:*:*:*:*:*:*
Range: <4.13
Buffalo/Wzr 600dhp Firmware
cpe:2.3:o:buffalo:wzr-600dhp_firmware:-:*:*:*:*:*:*:*
Buffalo/Wzr 600dhp2 Firmware
cpe:2.3:o:buffalo:wzr-600dhp2_firmware:-:*:*:*:*:*:*:*
Buffalo/Wzr 600dhp3 Firmware
cpe:2.3:o:buffalo:wzr-600dhp3_firmware:-:*:*:*:*:*:*:*
Buffalo/Wzr 900dhp Firmware
cpe:2.3:o:buffalo:wzr-900dhp_firmware:-:*:*:*:*:*:*:*
Buffalo/Wzr 900dhp2 Firmware
cpe:2.3:o:buffalo:wzr-900dhp2_firmware:-:*:*:*:*:*:*:*
Buffalo/Wzr S600dhp Firmware
cpe:2.3:o:buffalo:wzr-s600dhp_firmware:-:*:*:*:*:*:*:*
Buffalo/Wzr S900dhp Firmware
cpe:2.3:o:buffalo:wzr-s900dhp_firmware:-:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

jvn.jp/en/jp/JVN83788689/nvdThird Party Advisory
www.buffalo.jp/news/detail/20260323-01.htmlnvdVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.637
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000