Lucene search
JpcertCVELIST:CVE-2024-44072HistorySep 10, 2024 - 6:56 a.m.
CVE-2024-44072
2024-09-1006:56:44
jpcert
www.cve.org
1
command injection
buffalo
wireless lan
routers
repeaters
os vulnerability
EPSS
0
Percentile
10.2%
OS command injection vulnerability exists in BUFFALO wireless LAN routers and wireless LAN repeaters. If a user logs in to the management page and sends a specially crafted request to the affected product from the product’s specific management page, an arbitrary OS command may be executed.
CNA Affected
[
{
"vendor": "BUFFALO INC.",
"product": "WHR-1166DHP2",
"versions": [
{
"version": "Ver. 2.95 and earlier",
"status": "affected"
}
]
},
{
"vendor": "BUFFALO INC.",
"product": "WHR-1166DHP3",
"versions": [
{
"version": "Ver. 2.95 and earlier",
"status": "affected"
}
]
},
{
"vendor": "BUFFALO INC.",
"product": "WHR-1166DHP4",
"versions": [
{
"version": "Ver. 2.95 and earlier",
"status": "affected"
}
]
},
{
"vendor": "BUFFALO INC.",
"product": "WSR-1166DHP3",
"versions": [
{
"version": "Ver. 1.18 and earlier",
"status": "affected"
}
]
},
{
"vendor": "BUFFALO INC.",
"product": "WSR-600DHP",
"versions": [
{
"version": "Ver. 2.93 and earlier",
"status": "affected"
}
]
},
{
"vendor": "BUFFALO INC.",
"product": "WEX-300HPTX/N",
"versions": [
{
"version": "Ver. 1.02 and earlier",
"status": "affected"
}
]
},
{
"vendor": "BUFFALO INC.",
"product": "WEX-733DHP2",
"versions": [
{
"version": "Ver. 1.03 and earlier",
"status": "affected"
}
]
},
{
"vendor": "BUFFALO INC.",
"product": "WEX-1166DHP2",
"versions": [
{
"version": "Ver. 1.05 and earlier",
"status": "affected"
}
]
},
{
"vendor": "BUFFALO INC.",
"product": "WEX-1166DHPS",
"versions": [
{
"version": "Ver. 1.05 and earlier",
"status": "affected"
}
]
},
{
"vendor": "BUFFALO INC.",
"product": "WEX-300HPS/N",
"versions": [
{
"version": "Ver. 1.02 and earlier",
"status": "affected"
}
]
},
{
"vendor": "BUFFALO INC.",
"product": "WEX-733DHPS",
"versions": [
{
"version": "Ver. 1.02 and earlier",
"status": "affected"
}
]
},
{
"vendor": "BUFFALO INC.",
"product": "WEX-733DHPTX",
"versions": [
{
"version": "Ver. 1.03 and earlier",
"status": "affected"
}
]
},
{
"vendor": "BUFFALO INC.",
"product": "WEX-1166DHP",
"versions": [
{
"version": "Ver. 1.23 and earlier",
"status": "affected"
}
]
},
{
"vendor": "BUFFALO INC.",
"product": "WEX-733DHP",
"versions": [
{
"version": "Ver. 1.64 and earlier",
"status": "affected"
}
]
},
{
"vendor": "BUFFALO INC.",
"product": "WHR-1166DHP",
"versions": [
{
"version": "Ver. 2.92 and earlier",
"status": "affected"
}
]
},
{
"vendor": "BUFFALO INC.",
"product": "WHR-300HP2",
"versions": [
{
"version": "Ver. 2.51 and earlier",
"status": "affected"
}
]
},
{
"vendor": "BUFFALO INC.",
"product": "WHR-600D",
"versions": [
{
"version": "Ver. 2.91 and earlier",
"status": "affected"
}
]
},
{
"vendor": "BUFFALO INC.",
"product": "WMR-300",
"versions": [
{
"version": "Ver. 2.50 and earlier",
"status": "affected"
}
]
}
]Related
vulnrichment
vulnrichment
CVE-2024-44072
2024-09-10 06:56:44
nvd
nvd
CVE-2024-44072
2024-09-10 07:15:01
jvn
jvn
cve
cve
CVE-2024-44072
2024-09-10 07:15:01