Buffalotech : Security Vulnerabilities, CVEs, Published In 2015
Buffalo WZR-600DHP2 devices with firmware 2.09, 2.13, and 2.16 use an improper algorithm for selecting the ID value in the header of a DNS query, which makes it easier for remote attackers to spoof responses by predicting this value.
Max CVSS
6.8
EPSS Score
0.20%
Published
2015-12-27
Updated
2016-11-28
The Buffalo WHR-1166DHP 1.60 and earlier, WSR-600DHP 1.60 and earlier, WHR-600D 1.60 and earlier, WHR-300HP2 1.60 and earlier, WMR-300 1.60 and earlier, WEX-300 1.60 and earlier, and BHR-4GRV2 1.04 and earlier routers allow remote authenticated users to execute arbitrary OS commands via unspecified vectors.
Max CVSS
7.7
EPSS Score
0.12%
Published
2015-06-09
Updated
2015-06-16
2 vulnerabilities found