EUVD-2021-8145

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Vulnerabilities in WSR-1166DHP3 and DHP4 firmwares allow arbitrary OS command execution.

Reporter	Title	Published	Views	Family All 9
CNNVD	BUFFALO INC WSR-1166DHP3-BK 操作系统命令注入漏洞	31 May 202100:00	–	cnnvd
CNVD	Buffalo WSR-1166DHP3 and WSR-1166DHP4 Operating System Command Injection Vulnerability	3 Jun 202100:00	–	cnvd
CVE	CVE-2021-20731	9 Jun 202101:05	–	cve
Cvelist	CVE-2021-20731	9 Jun 202101:05	–	cvelist
Japan Vulnerability Notes	Multiple vulnerabilities in Buffalo WSR-1166DHP3 and WSR-1166DHP4 routers	1 Jun 202106:18	–	jvn
NVD	CVE-2021-20731	9 Jun 202102:15	–	nvd
OSV	CVE-2021-20731	9 Jun 202102:15	–	osv
Prion	Design/Logic Flaw	9 Jun 202102:15	–	prion
RedhatCVE	CVE-2021-20731	22 May 202519:08	–	redhatcve

[
  {
    "enisaIdVendor": [
      {
        "id": "4b7990b8-54e7-3ee1-a8b1-a0897df00462",
        "vendor": {
          "name": "BUFFALO INC."
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "4f78c7a6-2eb4-3d32-8346-67be2b95d31b",
        "product": {
          "name": "WSR-1166DHP3 and WSR-1166DHP4"
        },
        "product_version": "WSR-1166DHP3 firmware Ver.1.16 and prior and WSR-1166DHP4 firmware Ver.1.02 and prior"
      }
    ]
  }
]

Source	Link
buffalo	www.buffalo.jp/news/detail/20210531-01.html
jvn	www.jvn.jp/en/vu/JVNVU92862829/index.html

03 Oct 2025 20:07Current

7.2High risk

Vulners AI Score7.2

CVSS 3.18.8

CVSS 28.3

EPSS0.00328