CVE-2021-3512

🗓️ 28 Apr 2021 00:45:27Reported by jpcertType

cve🔗 web.nvd.nist.gov📰️ 4 Media mentions👁 70 Views

CVE-2021-3512 Improper access control vulnerability in Buffalo broadband routers firmware allows remote attackers to bypass access restriction

Reporter	Title	Published	Views	Family All 7
CNNVD	Buffalo broadband routers 安全漏洞	27 Apr 202100:00	–	cnnvd
Cvelist	CVE-2021-3512	28 Apr 202100:45	–	cvelist
EUVD	EUVD-2021-26831	7 Oct 202500:30	–	euvd
Japan Vulnerability Notes	Multiple vulnerabilities in Buffalo broadband routers	28 Apr 202107:14	–	jvn
NVD	CVE-2021-3512	28 Apr 202101:15	–	nvd
Prion	Improper access control	28 Apr 202101:15	–	prion
RedhatCVE	CVE-2021-3512	22 May 202521:28	–	redhatcve

NVD

Vulners

Node

buffalo bhr-4grv_firmwareRange<2.00

AND

buffalo bhr-4grvMatch-

Node

buffalo dwr-hp-g300nh_firmwareRange<1.84

AND

buffalo dwr-hp-g300nhMatch-

Node

buffalo hw-450hp-zwe_firmwareRange<2.00

AND

buffalo hw-450hp-zweMatch-

Node

buffalo whr-300hp_firmwareRange<2.00

AND

buffalo whr-300hpMatch-

Node

buffalo whr-300_firmwareRange<2.00

AND

buffalo whr-300Match-

Node

buffalo whr-g301n_firmwareRange<1.87

AND

buffalo whr-g301nMatch-

Node

buffalo whr-hp-g300n_firmwareRange<2.00

AND

buffalo whr-hp-g300nMatch-

Node

buffalo whr-hp-gn_firmwareRange<1.87

AND

buffalo whr-hp-gnMatch-

Node

buffalo wpl-05g300_firmwareRange<1.88

AND

buffalo wpl-05g300Match-

Node

buffalo wzr-450hp-cwt_firmwareRange<2.00

AND

buffalo wzr-450hp-cwtMatch-

Node

buffalo wzr-450hp-ub_firmwareRange<2.00

AND

buffalo wzr-450hp-ubMatch-

Node

buffalo wzr-hp-ag300h_firmwareRange<1.76

AND

buffalo wzr-hp-ag300hMatch-

Node

buffalo wzr-hp-g300nh_firmwareRange<1.84

AND

buffalo wzr-hp-g300nhMatch-

Node

buffalo wzr-hp-g301nh_firmwareRange<1.84

AND

buffalo wzr-hp-g301nhMatch-

Node

buffalo wzr-hp-g302h_firmwareRange<1.86

AND

buffalo wzr-hp-g302hMatch-

Node

buffalo wzr-hp-g450h_firmwareRange<1.90

AND

buffalo wzr-hp-g450hMatch-

Node

buffalo wzr-300hp_firmwareRange<2.00

AND

buffalo wzr-300hpMatch-

Node

buffalo wzr-450hp_firmwareRange<2.00

AND

buffalo wzr-450hpMatch-

Node

buffalo wzr-600dhp_firmwareRange<2.00

AND

buffalo wzr-600dhpMatch-

Node

buffalo wzr-d1100h_firmwareRange<2.00

AND

buffalo wzr-d1100hMatch-

Node

buffalo fs-hp-g300n_firmwareRange<3.33

AND

buffalo fs-hp-g300nMatch-

Node

buffalo fs-600dhp_firmwareRange<3.40

AND

buffalo fs-600dhpMatch-

Node

buffalo fs-r600dhp_firmwareRange<3.40

AND

buffalo fs-r600dhpMatch-

Node

buffalo fs-g300n_firmwareRange<3.14

AND

buffalo fs-g300nMatch-

[
  {
    "product": "Buffalo broadband routers",
    "vendor": "BUFFALO INC.",
    "versions": [
      {
        "status": "affected",
        "version": "BHR-4GRV firmware Ver.1.99 and prior, DWR-HP-G300NH firmware Ver.1.83 and prior, HW-450HP-ZWE firmware Ver.1.99 and prior, WHR-300HP firmware Ver.1.99 and prior, WHR-300 firmware Ver.1.99 and prior, WHR-G301N firmware Ver.1.86 and prior, WHR-HP-G300N firmware Ver.1.99 and prior, WHR-HP-GN firmware Ver.1.86 and prior, WPL-05G300 firmware Ver.1.87 and prior, WZR-450HP-CWT firmware Ver.1.99 and prior, WZR-450HP-UB firmware Ver.1.99 and prior, WZR-HP-AG300H firmware Ver.1.75 and prior, WZR-HP-G300NH firmware Ver.1.83 and prior, WZR-HP-G301NH firmware Ver.1.83 and prior, WZR-HP-G302H firmware Ver.1.85 and prior, WZR-HP-G450H firmware Ver.1.89 and prior, WZR-300HP firmware Ver.1.99 and prior, WZR-450HP firmware Ver.1.99 and prior, WZR-600DHP firmware Ver.1.99 and prior, WZR-D1100H firmware Ver.1.99 and prior, FS-HP-G300N firmware Ver.3.32 and prior, FS-600DHP firmware Ver.3.38 and prior, FS-R600DHP firmware Ver.3.39 and prior, and FS-G300N firmware Ver.3.13 and prior"
      }
    ]
  }
]

Source	Link
jvn	www.jvn.jp/en/vu/JVNVU99235714/index.html
buffalo	www.buffalo.jp/news/detail/20210427-01.html

21 Nov 2024 06:21Current

8.9High risk

Vulners AI Score8.9

CVSS 28.3

CVSS 3.18.8

EPSS0.00245