EUVD-2023-28482

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Stored cross-site scripting vulnerability in Buffalo devices allows JavaScript execution on browsers.

Reporter	Title	Published	Views	Family All 9
CNNVD	Buffalo network devices 跨站脚本漏洞	7 Mar 202300:00	–	cnnvd
CVE	CVE-2023-24464	11 Apr 202300:00	–	cve
Cvelist	CVE-2023-24464	11 Apr 202300:00	–	cvelist
Japan Vulnerability Notes	Multiple vulnerabilities in Buffalo network devices	8 Mar 202306:12	–	jvn
NVD	CVE-2023-24464	11 Apr 202309:15	–	nvd
Prion	Cross site scripting	11 Apr 202309:15	–	prion
Positive Technologies	PT-2023-19622 · Unknown +4 · Bs-Gs2024P +5	11 Apr 202300:00	–	ptsecurity
RedhatCVE	CVE-2023-24464	23 May 202503:21	–	redhatcve
Vulnrichment	CVE-2023-24464	11 Apr 202300:00	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "da13b8f0-ed61-3801-be99-6a03f9ca9ab9",
        "vendor": {
          "name": "BUFFALO INC."
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "0c5ba391-5b7d-3041-b6a6-8492b6ad888d",
        "product": {
          "name": "BS-GS series"
        },
        "product_version": "BS-GS2008 firmware Ver. 1.0.10.01 and earlier, BS-GS2016 firmware Ver. 1.0.10.01 and earlier, BS-GS2024 firmware Ver. 1.0.10.01 and earlier, BS-GS2048 firmware Ver. 1.0.10.01 and earlier, BS-GS2008P firmware Ver. 1.0.10.01 and earlier, BS-GS2016P firmware Ver. 1.0.10.01 and earlier, and BS-GS2024P firmware Ver. 1.0.10.01 and earlier"
      }
    ]
  }
]

Source	Link
buffalo	www.buffalo.jp/news/detail/20230310-01.html
jvn	www.jvn.jp/en/vu/JVNVU96824262/

03 Oct 2025 20:07Current

5.9Medium risk

Vulners AI Score5.9

CVSS 3.15.4

EPSS0.00677

SSVC