Vulnerability CVE-2016-4816
Published: 2016-06-18   Modified: 2016-06-19

Description:
BUFFALO WZR-600DHP3 devices with firmware 2.16 and earlier and WZR-S600DHP devices allow remote attackers to discover credentials and other sensitive information via unspecified vectors.

CVSS2 => (AV:N/AC:M/Au:N/C:P/I:N/A:N)

CVSS Base Score
Impact Subscore
Exploitability Subscore
4.3/10
2.9/10
8.6/10
Exploit range
Attack complexity
Authentication
Remote
Medium
No required
Confidentiality impact
Integrity impact
Availability impact
Partial
None
None
Affected software
Buffalo -> Wzr-1750dhp2 firmware 
Buffalo -> Wzr-s1750dhp firmware 
Buffalo -> Bhr-4grv firmware 
Buffalo -> Wzr-1750dhp firmware 
Buffalo -> Wzr-s600dhp firmware 
Buffalo -> Dwr-hp-g300nh firmware 
Buffalo -> Wzr-300hp firmware 
Buffalo -> Wzr-s900dhp firmware 
Buffalo -> Fs-600dhp firmware 
Buffalo -> Wzr-450hp-cwt firmware 
Buffalo -> Hw-450hp-zwe firmware 
Buffalo -> Wzr-450hp-ub firmware 
Buffalo -> Wapm-ag300n firmware 
Buffalo -> Wzr-450hp firmware 
Buffalo -> Wapm-apg300n firmware 
Buffalo -> Wzr-600dhp3 firmware 
Buffalo -> Wcr-300 firmware 
Buffalo -> Wzr-600dhp firmware 
Buffalo -> Whr-300 firmware 
Buffalo -> Wzr-900dhp2 firmware 
Buffalo -> Whr-300hp firmware 
Buffalo -> Wzr-900dhp firmware 
Buffalo -> Whr-hp-g300n firmware 
Buffalo -> Wzr-d1100h firmware 
Buffalo -> Wpl-05g300 firmware 
Buffalo -> Wzr-hp-ag300h firmware 
Buffalo -> Wxr-1750dhp firmware 
Buffalo -> Wzr-hp-g300nh firmware 
Buffalo -> Wxr-1900dhp firmware 
Buffalo -> Wzr-hp-g301nh firmware 
Buffalo -> Wzr-1166dhp2 firmware 
Buffalo -> Wzr-hp-g302h firmware 
Buffalo -> Wzr-1166dhp firmware 
Buffalo -> Wzr-hp-g450h firmware 

 References:
http://buffalo.jp/support_s/s20160527a.html
http://jvndb.jvn.jp/jvndb/JVNDB-2016-000087
http://jvn.jp/en/jp/JVN75813272/index.html
Copyright 2024, cxsecurity.com

 

Back to Top