8 matches found
The vulnerability of the BUFFALO VR-S1000 router’s microprogramming software, related to the implementation or modification of arguments, allows a perpetrator to execute arbitrary code.
The vulnerability of the BUFFALO VR-S1000 router’s microprogramming software is related to the implementation or modification of arguments. Exploiting this vulnerability can allow a perpetrator to execute arbitrary code...
The vulnerability of the microprogrammed software of the BUFFALO VR-S1000 routers, related to the use of pre-installed user credentials, allows a intruder to obtain access to the password of any user.
The vulnerability of the BUFFALO VR-S1000 router’s microprogramming software is related to the use of pre-set login credentials. Exploiting this vulnerability could allow a hacker to gain access to the password of any user...
Multiple vulnerabilities in BUFFALO VR-S1000
Overview VR-S1000 provided by BUFFALO INC. contains multiple vulnerabilities listed below. OS command injection CWE-78 - CVE-2023-45741 Argument injection CWE-88 - CVE-2023-46681 Use of hard-coded cryptographic key CWE-321 - CVE-2023-46711 Information disclosure CWE-200 - CVE-2023-51363...
Buffalo VR-S1000 Security Vulnerability
The Buffalo VR-S1000 is a VPN router from Buffalo Japan. A security vulnerability exists in the Buffalo VR-S1000 version 2.37 and earlier, which stems from the use of hard-coded cryptographic keys, which allows an attacker to analyze the passwords of users of a specific product...
Buffalo VR-S1000 Security Vulnerability
The Buffalo VR-S1000 is a VPN router from Buffalo, Japan. A security vulnerability exists in the Buffalo VR-S1000 version 2.37 and prior versions that could allow an unauthenticated attacker to gain access to the product's web management page to obtain sensitive information...
PT-2023-8530 · Buffalo · Buffalo Vr-S1000
Name of the Vulnerable Software and Affected Versions: BUFFALO VR-S1000 versions 2.37 and earlier Description: The issue is related to the improper neutralization of argument delimiters in a command, also known as an 'Argument Injection' vulnerability. This allows an authenticated attacker who ca...
PT-2023-31792 · Buffalo · Buffalo Vr-S1000
Name of the Vulnerable Software and Affected Versions: BUFFALO VR-S1000 versions 2.37 and earlier Description: The issue allows a network-adjacent unauthenticated attacker who can access the product's web management page to obtain sensitive information. Recommendations: For versions 2.37 and...
PT-2023-8310 · Buffalo · Buffalo Vr-S1000
Name of the Vulnerable Software and Affected Versions: BUFFALO VR-S1000 versions 2.37 and earlier Description: The issue is related to the use of a hard-coded cryptographic key in the firmware, which may allow an attacker to analyze the password of a specific product user. This could potentially...