CVE-2022-43486

🗓️ 19 Dec 2022 00:00:00Reported by jpcertType

Hidden functionality vulnerability in Buffalo network devices firmware versions allowing arbitrary command executio

Reporter	Title	Published	Views	Family All 11
Circl	CVE-2022-43486	17 Apr 202514:58	–	circl
CNNVD	Buffalo network devices 安全漏洞	9 Dec 202200:00	–	cnnvd
Cvelist	CVE-2022-43486	19 Dec 202200:00	–	cvelist
EUVD	EUVD-2022-46485	3 Oct 202520:07	–	euvd
Japan Vulnerability Notes	Multiple vulnerabilities in Buffalo network devices	12 Dec 202206:28	–	jvn
NVD	CVE-2022-43486	19 Dec 202203:15	–	nvd
OSV	CVE-2022-43486	19 Dec 202203:15	–	osv
Prion	Denial of service	19 Dec 202203:15	–	prion
Positive Technologies	PT-2022-26938 · Buffalo · Buffalo Network Devices	19 Dec 202200:00	–	ptsecurity
RedhatCVE	CVE-2022-43486	23 May 202501:21	–	redhatcve

NVD

Vulners

Node

buffalo wsr-3200ax4s_firmwareRange≤1.26

AND

buffalo wsr-3200ax4sMatch-

Node

buffalo wsr-3200ax4b_firmwareMatch1.25

AND

buffalo wsr-3200ax4bMatch-

Node

buffalo wsr-2533dhp2_firmwareRange≤1.22

AND

buffalo wsr-2533dhp2Match-

Node

buffalo wsr-a2533dhp2_firmwareRange≤1.22

AND

buffalo wsr-a2533dhp2Match-

Node

buffalo wsr-2533dhp3_firmwareRange≤1.26

AND

buffalo wsr-2533dhp3Match-

Node

buffalo wsr-a2533dhp3_firmwareRange≤1.26

AND

buffalo wsr-a2533dhp3Match-

Node

buffalo wsr-2533dhpl2_firmwareRange≤1.03

AND

buffalo wsr-2533dhpl2Match-

Node

buffalo wsr-2533dhpls_firmwareRange≤1.07

AND

buffalo wsr-2533dhplsMatch-

Node

buffalo wex-1800ax4_firmwareRange≤1.13

AND

buffalo wex-1800ax4Match-

Node

buffalo wex-1800ax4ea_firmwareRange≤1.13

AND

buffalo wex-1800ax4eaMatch-

Node

buffalo wsr-2533dhp_firmwareRange≤1.08

AND

buffalo wsr-2533dhpMatch-

Node

buffalo wsr-2533dhpl_firmwareRange≤1.08

AND

buffalo wsr-2533dhplMatch-

Node

buffalo wcr-1166ds_firmwareRange≤1.34

AND

buffalo wcr-1166dsMatch-

[
  {
    "vendor": "BUFFALO INC.",
    "product": "WXR-5700AX7S",
    "versions": [
      {
        "version": "firmware Ver. 1.27 and earlier",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "BUFFALO INC.",
    "product": "WXR-5700AX7B",
    "versions": [
      {
        "version": "firmware Ver. 1.27 and earlier",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "BUFFALO INC.",
    "product": "WSR-3200AX4S",
    "versions": [
      {
        "version": "firmware Ver. 1.26 and earlier",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "BUFFALO INC.",
    "product": "WSR-3200AX4B",
    "versions": [
      {
        "version": "firmware Ver. 1.25",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "BUFFALO INC.",
    "product": "WSR-2533DHP",
    "versions": [
      {
        "version": "firmware Ver. 1.08 and earlier",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "BUFFALO INC.",
    "product": "WSR-2533DHP2",
    "versions": [
      {
        "version": "firmware Ver. 1.22 and earlier",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "BUFFALO INC.",
    "product": "WSR-A2533DHP2",
    "versions": [
      {
        "version": "firmware Ver. 1.22 and earlier",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "BUFFALO INC.",
    "product": "WSR-2533DHP3",
    "versions": [
      {
        "version": "firmware Ver. 1.26 and earlier",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "BUFFALO INC.",
    "product": "WSR-A2533DHP3",
    "versions": [
      {
        "version": "firmware Ver. 1.26 and earlier",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "BUFFALO INC.",
    "product": "WSR-2533DHPL",
    "versions": [
      {
        "version": "firmware Ver. 1.08 and earlier",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "BUFFALO INC.",
    "product": "WSR-2533DHPL2",
    "versions": [
      {
        "version": "firmware Ver. 1.03 and earlier",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "BUFFALO INC.",
    "product": "WSR-2533DHPLS",
    "versions": [
      {
        "version": "firmware Ver. 1.07 and earlier",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "BUFFALO INC.",
    "product": "WSR-2533DHPLB",
    "versions": [
      {
        "version": "firmware Ver. 1.05",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "BUFFALO INC.",
    "product": "WCR-1166DS",
    "versions": [
      {
        "version": "firmware Ver. 1.34 and earlier",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "BUFFALO INC.",
    "product": "WEX-1800AX4",
    "versions": [
      {
        "version": "firmware Ver. 1.13 and earlier",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "BUFFALO INC.",
    "product": "WEX-1800AX4EA",
    "versions": [
      {
        "version": "firmware Ver. 1.13 and earlier",
        "status": "affected"
      }
    ]
  }
]

Source	Link
jvn	www.jvn.jp/en/vu/JVNVU97099584/
buffalo	www.buffalo.jp/news/detail/20240131-01.html

17 Jun 2026 05:06Current

6.8Medium risk

Vulners AI Score6.8

CVSS 3.16.8

EPSS0.00363

SSVC

CWE-94