ID
VAR-202404-0085
CVE
CVE-2024-26023
TITLE
Buffalo radio LAN Multiple vulnerabilities in routers
Trust: 0.8
sources:
JVNDB: JVNDB-2024-000040
DESCRIPTION
OS command injection vulnerability in BUFFALO wireless LAN routers allows a logged-in user to execute arbitrary OS commands. None
Trust: 1.62
sources:
NVD: CVE-2024-26023 //
JVNDB: JVNDB-2024-000040
AFFECTED PRODUCTS
| vendor: | バッファロー | model: | wsr-2533dhp2 | scope: | - | version: | - | Trust: 0.8 |
| vendor: | バッファロー | model: | wsr-2533dhp | scope: | - | version: | - | Trust: 0.8 |
| vendor: | バッファロー | model: | wsr-2533dhpl | scope: | - | version: | - | Trust: 0.8 |
| vendor: | バッファロー | model: | wsr-a2533dhp2 | scope: | - | version: | - | Trust: 0.8 |
| vendor: | バッファロー | model: | wsr-1166dhp | scope: | - | version: | - | Trust: 0.8 |
| vendor: | バッファロー | model: | wcr-1166ds | scope: | - | version: | - | Trust: 0.8 |
| vendor: | バッファロー | model: | wsr-1166dhp2 | scope: | - | version: | - | Trust: 0.8 |
sources:
JVNDB: JVNDB-2024-000040
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||
|
|
sources:
JVNDB: JVNDB-2024-000040
PROBLEMTYPE DATA
| problemtype: | OS Command injection (CWE-78) [IPA evaluation ] | Trust: 0.8 |
| problemtype: | others (CWE-Other) [IPA evaluation ] | Trust: 0.8 |
sources:
JVNDB: JVNDB-2024-000040
PATCH
| title: | Information from Buffalo Co., Ltd. Buffalo Co., Ltd. | url: | https://jvn.jp/jp/jvn58236836/407111/index.html | Trust: 0.8 |
sources:
JVNDB: JVNDB-2024-000040
EXTERNAL IDS
| db: | JVN | id: | JVN58236836 | Trust: 1.8 |
| db: | NVD | id: | CVE-2024-26023 | Trust: 1.8 |
| db: | JVNDB | id: | JVNDB-2024-000040 | Trust: 0.8 |
sources:
JVNDB: JVNDB-2024-000040 //
NVD: CVE-2024-26023
REFERENCES
| url: | https://jvn.jp/en/jp/jvn58236836/ | Trust: 1.0 |
| url: | https://www.buffalo.jp/news/detail/20240410-01.html | Trust: 1.0 |
| url: | https://jvn.jp/jp/jvn58236836/index.html | Trust: 0.8 |
sources:
JVNDB: JVNDB-2024-000040 //
NVD: CVE-2024-26023
SOURCES
| db: | JVNDB | id: | JVNDB-2024-000040 |
| db: | NVD | id: | CVE-2024-26023 |
LAST UPDATE DATE
2024-04-27T12:11:57.427000+00:00
SOURCES UPDATE DATE
| db: | JVNDB | id: | JVNDB-2024-000040 | date: | 2024-04-15T03:13:00 |
| db: | NVD | id: | CVE-2024-26023 | date: | 2024-04-15T13:15:31.997 |
SOURCES RELEASE DATE
| db: | JVNDB | id: | JVNDB-2024-000040 | date: | 2024-04-15T00:00:00 |
| db: | NVD | id: | CVE-2024-26023 | date: | 2024-04-15T11:15:08.273 |