EUVD-2023-28560

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Improper access control in Buffalo devices allows attacker to alter settings and obtain files.

Reporter	Title	Published	Views	Family All 10
CNNVD	Buffalo network devices 安全漏洞	7 Mar 202300:00	–	cnnvd
CVE	CVE-2023-24544	11 Apr 202300:00	–	cve
Cvelist	CVE-2023-24544	11 Apr 202300:00	–	cvelist
Japan Vulnerability Notes	Multiple vulnerabilities in Buffalo network devices	8 Mar 202306:12	–	jvn
NVD	CVE-2023-24544	11 Apr 202309:15	–	nvd
OSV	CVE-2023-24544	11 Apr 202309:15	–	osv
Prion	Improper access control	11 Apr 202309:15	–	prion
Positive Technologies	PT-2023-19681 · Buffalo · Bs-Gs2008P +5	11 Apr 202300:00	–	ptsecurity
RedhatCVE	CVE-2023-24544	23 May 202501:54	–	redhatcve
Vulnrichment	CVE-2023-24544	11 Apr 202300:00	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "3c7c3842-9367-33cb-a504-8f0e3ca3ea59",
        "vendor": {
          "name": "BUFFALO INC."
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "78dd0a42-4715-39cd-befa-08924acec2d7",
        "product": {
          "name": "BS-GSL and BS-GS series"
        },
        "product_version": "BS-GSL2024 firmware Ver. 1.10-0.03 and earlier, BS-GSL2016P firmware Ver. 1.10-0.03 and earlier, BS-GSL2016 firmware Ver. 1.10-0.03 and earlier, BS-GS2008 firmware Ver. 1.0.10.01 and earlier, BS-GS2016 firmware Ver. 1.0.10.01 and earlier, BS-GS2024 firmware Ver. 1.0.10.01 and earlier, BS-GS2048 firmware Ver. 1.0.10.01 and earlier, BS-GS2008P firmware Ver. 1.0.10.01 and earlier, BS-GS2016P firmware Ver. 1.0.10.01 and earlier, and BS-GS2024P firmware Ver. 1.0.10.01 and earlier"
      }
    ]
  }
]

Source	Link
buffalo	www.buffalo.jp/news/detail/20230310-01.html
jvn	www.jvn.jp/en/vu/JVNVU96824262/

03 Oct 2025 20:07Current

7High risk

Vulners AI Score7

CVSS 3.18.1

EPSS0.00085

SSVC