9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
8.8 High
CVSS3
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
0.001 Low
EPSS
Percentile
45.2%
WZR-1750DHP2 provided by BUFFALO INC. is a wireless LAN router. WXR-1900DHP2 contains multiple vulnerabilities listed below.
Missing Authentication for Critical Function (CWE-306) - CVE-2018-0554
Version | Vector | Score |
---|---|---|
CVSS v3 | CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H | Base Score: 8.8 |
CVSS v2 | AV:A/AC:L/Au:N/C:C/I:C/A:C | Base Score: 8.3 |
Buffer Overflow (CWE-119) - CVE-2018-0555
Version | Vector | Score |
---|---|---|
CVSS v3 | CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L | Base Score: 5.0 |
CVSS v2 | AV:A/AC:M/Au:N/C:P/I:P/A:P | Base Score: 5.4 |
OS Command Injection (CWE-78) - CVE-2018-0556
Version | Vector | Score |
---|---|---|
CVSS v3 | CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L | Base Score: 6.3 |
CVSS v2 | AV:A/AC:L/Au:N/C:P/I:P/A:P | Base Score: 5.8 |
The possible impact of each vulnerability is as follows:
Update the Firmware
Apply the latest firmware update according to the information provided by the developer.
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
8.8 High
CVSS3
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
0.001 Low
EPSS
Percentile
45.2%