CVE-2023-39620

2023-09-0800:00:00

mitre

www.cve.org

buffalo america inc

terastation nas

remote attacker

sensitive information

guest account

AI Score

7.5

Confidence

High

EPSS

0.001

Percentile

50.5%

JSON

An Issue in Buffalo America, Inc. TeraStation NAS TS5410R v.5.00 thru v.0.07 allows a remote attacker to obtain sensitive information via the guest account function.

References

github.com/bcross520/bcross520.github.io/wiki/Buffalo-Terastation-NAS-Disabled-guest-built%E2%80%90in-account-allows-for-SMB%5CRPC-device-enumeration.