VYPR

WNC01WH

by Buffalotech

CVEs (7)

  • CVE-2016-7824HigJun 9, 2017
    risk 0.57cvss 8.8epss 0.02

    Buffalo NC01WH devices with firmware version 1.0.0.8 and earlier allows authenticated attackers to bypass access restriction to enable the debug option via unspecified vectors.

  • CVE-2016-7822HigJun 9, 2017
    risk 0.57cvss 8.8epss 0.01

    Cross-site request forgery (CSRF) vulnerability in Buffalo WNC01WH devices with firmware version 1.0.0.8 and earlier allows remote attackers to hijack the authentication of a logged in user to perform unintended operations via unspecified vectors.

  • CVE-2017-2152MedApr 28, 2017
    risk 0.44cvss 6.8epss 0.01

    WNC01WH firmware 1.0.0.9 and earlier allows authenticated attackers to execute arbitrary OS commands via unspecified vectors.

  • CVE-2016-7826MedJun 9, 2017
    risk 0.42cvss 6.5epss 0.02

    Directory traversal vulnerability in Buffalo WNC01WH devices with firmware version 1.0.0.8 and earlier allows authenticated attackers to read arbitrary files via specially crafted POST requests.

  • CVE-2016-7825MedJun 9, 2017
    risk 0.42cvss 6.5epss 0.02

    Directory traversal vulnerability in Buffalo WNC01WH devices with firmware version 1.0.0.8 and earlier allows authenticated attackers to read arbitrary files via specially crafted commands.

  • CVE-2016-7821MedJun 9, 2017
    risk 0.42cvss 6.5epss 0.02

    Buffalo WNC01WH devices with firmware version 1.0.0.8 and earlier allow remote attackers to cause a denial of service against the management screen via unspecified vectors.

  • CVE-2016-7823MedJun 9, 2017
    risk 0.28cvss 4.3epss 0.00

    Cross-site scripting vulnerability in Buffalo WNC01WH devices with firmware version 1.0.0.8 and earlier allows authenticated attackers to inject arbitrary web script or HTML via unspecified vectors.