Lucene search
HistoryDec 26, 2023 - 8:15 a.m.
CVE-2023-45741
cve-2023-45741
web management access
os commands
6.8 Medium
CVSS3
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
9.7%
VR-S1000 firmware Ver. 2.37 and earlier allows an attacker with access to the product’s web management page to execute arbitrary OS commands.
Affected configurations
Node
buffalovr-s1000_firmwareRange≤2.37
buffalovr-s1000Match-
Related
cve
cve
CVE-2023-45741
2023-12-26 08:15:10
prion
prion
Design/Logic Flaw
2023-12-26 08:15:00
cvelist
cvelist
CVE-2023-45741
2023-12-26 07:28:42
jvn
jvn
JVN#23771490: Multiple vulnerabilities in BUFFALO VR-S1000
2023-12-26 00:00:00
6.8 Medium
CVSS3
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
9.7%
Related for NVD:CVE-2023-45741