Lucene search
Japan Vulnerability NotesJVN:50447904HistoryJun 05, 2015 - 12:00 a.m.
JVN#50447904: Multiple Buffalo wireless LAN routers vulnerable to OS command injection
2015-06-0500:00:00
Japan Vulnerability Notes
jvn.jp
14
7.7 High
CVSS2
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:A/AC:L/Au:S/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
45.7%
Multiple wireless LAN routers provided by BUFFALO INC. contain an OS command injection vulnerability.
Impact
An authenticated attacker may be able to execute arbitrary OS commands.
Solution
Update the Firmware
Apply the appropriate firmware update provided by the developer.
Products Affected
- WHR-1166DHP Ver.1.60 and earlier
- WSR-600DHP Ver.1.60 and earlier
- WHR-600D Ver.1.60 and earlier
- WHR-300HP2 Ver.1.60 and earlier
- WMR-300 Ver.1.60 and earlier
- WEX-300 Ver.1.60 and earlier
- BHR-4GRV2 Ver.1.04 and earlier
Related
cve
cve
CVE-2014-9284
2015-06-09 00:59:00
nvd
nvd
CVE-2014-9284
2015-06-09 00:59:00
cvelist
cvelist
CVE-2014-9284
2015-06-09 00:00:00
prion
prion
Design/Logic Flaw
2015-06-09 00:59:00
7.7 High
CVSS2
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:A/AC:L/Au:S/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
45.7%
Related for JVN:50447904