RSS   Vulnerabilities for 'Bhr-4grv2 firmware'   RSS

2016-01-22
 
CVE-2016-1135

 

 
Cross-site scripting (XSS) vulnerability on BUFFALO BHR-4GRV2 devices with firmware 1.04 and earlier, WEX-300 devices with firmware 1.90 and earlier, WHR-1166DHP devices with firmware 1.90 and earlier, WHR-300HP2 devices with firmware 1.90 and earlier, WHR-600D devices with firmware 1.90 and earlier, WMR-300 devices with firmware 1.90 and earlier, WMR-433 devices with firmware 1.01 and earlier, and WSR-1166DHP devices with firmware 1.01 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

 
 
CVE-2016-1134

 

 
Cross-site request forgery (CSRF) vulnerability on BUFFALO BHR-4GRV2 devices with firmware 1.04 and earlier, WEX-300 devices with firmware 1.90 and earlier, WHR-1166DHP devices with firmware 1.90 and earlier, WHR-300HP2 devices with firmware 1.90 and earlier, WHR-600D devices with firmware 1.90 and earlier, WMR-300 devices with firmware 1.90 and earlier, WMR-433 devices with firmware 1.01 and earlier, and WSR-1166DHP devices with firmware 1.01 and earlier allows remote attackers to hijack the authentication of arbitrary users.

 

 >>> Vendor: Buffalo inc 9 Products
Bhr-4grv2 firmware
Wex-300 firmware
Whr-1166dhp firmware
Whr-300hp2 firmware
Whr-600d firmware
Wmr-300 firmware
Wmr-433 firmware
Wsr-1166dhp firmware
Wnc01wh firmware


Copyright 2024, cxsecurity.com

 

Back to Top