Use of password hash with insufficient computational effort vulnerability in BUFFALO Wi-Fi router "WSR-1800AX4 series"

Overview Wi-Fi router "WSR-1800AX4 series" provided by BUFFALO INC. contains the following vulnerability. Use of password hash with insufficient computational effort CWE-916 - CVE-2025-46413 Kazuaki Chikamori and Takayuki Tatekawa of National Institute of Technology, Kochi College reported this...

CVE-2021-20090

A path traversal vulnerability in the web interfaces of Buffalo WSR-2533DHPL2 firmware version = 1.02 and WSR-2533DHP3 firmware version = 1.24 could allow unauthenticated remote attackers to bypass authentication...

PT-2022-24693 · Buffalo · Wzr-600Dhp +48

Name of the Vulnerable Software and Affected Versions: WCR-300 firmware Ver. 1.87 and earlier WHR-HP-G300N firmware Ver. 2.00 and earlier WHR-HP-GN firmware Ver. 1.87 and earlier WPL-05G300 firmware Ver. 1.88 and earlier WZR-300HP firmware Ver. 2.00 and earlier WZR-450HP firmware Ver. 2.00 and...

Buffalo network devices 信任管理问题漏洞

Buffalo firmware is a network device from Buffalo, a Japanese company. Buffalo Wi-Fi devices are vulnerable to a trust management issue that stems from the use of hard-coded credentials, which can be exploited by an attacker on a neighboring network to modify the device's configuration...

VulnCheck KEV: CVE-2021-20090

Arcadyan Buffalo firmware contains a path traversal vulnerability that could allow unauthenticated, remote attackers to bypass authentication and access sensitive information. This vulnerability affects multiple routers across several different vendors...