WCR-1166DS
by Buffalotech
CVEs (4)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2017-10811 | Med | 0.44 | 6.8 | 0.01 | Aug 18, 2017 | Buffalo WCR-1166DS devices with firmware 1.30 and earlier allow an attacker to execute arbitrary OS commands via unspecified vectors. | ||
| CVE-2024-26023 | 0.00 | — | 0.01 | Apr 15, 2024 | OS command injection vulnerability in BUFFALO wireless LAN routers allows a logged-in user to execute arbitrary OS commands. | |||
| CVE-2022-43443 | 0.00 | — | 0.01 | Dec 19, 2022 | OS command injection vulnerability in Buffalo network devices allows an network-adjacent attacker to execute an arbitrary OS command if a specially crafted request is sent to the management page. | |||
| CVE-2022-43486 | 0.00 | — | 0.00 | Dec 19, 2022 | Hidden functionality vulnerability in Buffalo network devices allows a network-adjacent attacker with an administrative privilege to enable the debug functionalities and execute an arbitrary command on the affected devices. |
- risk 0.44cvss 6.8epss 0.01
Buffalo WCR-1166DS devices with firmware 1.30 and earlier allow an attacker to execute arbitrary OS commands via unspecified vectors.
- CVE-2024-26023Apr 15, 2024risk 0.00cvss —epss 0.01
OS command injection vulnerability in BUFFALO wireless LAN routers allows a logged-in user to execute arbitrary OS commands.
- CVE-2022-43443Dec 19, 2022risk 0.00cvss —epss 0.01
OS command injection vulnerability in Buffalo network devices allows an network-adjacent attacker to execute an arbitrary OS command if a specially crafted request is sent to the management page.
- CVE-2022-43486Dec 19, 2022risk 0.00cvss —epss 0.00
Hidden functionality vulnerability in Buffalo network devices allows a network-adjacent attacker with an administrative privilege to enable the debug functionalities and execute an arbitrary command on the affected devices.