CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

ATTACKERKB•added 2026/03/27 5:24 a.m.•1 views

CVE-2026-32669

Code injection vulnerability exists in BUFFALO Wi-Fi router products. If this vulnerability is exploited, an arbitrary code may be executed on the products...

8.8CVSS7.5AI score0.00266EPSS

CNNVD•added 2026/03/27 12:0 a.m.•5 views

BUFFALO Wi-Fi router 操作系统命令注入漏洞

The BUFFALO Wi-Fi router is a series of routers developed by the Japanese company BUFFALO. The BUFFALO Wi-Fi router has a vulnerability related to operating system command injection. This vulnerability stems from the presence of OS command injection, which may lead to the execution of arbitrary O...

9.8CVSS7.5AI score0.00922EPSS

CNNVD•added 2026/03/27 12:0 a.m.•4 views

BUFFALO Wi-Fi router 代码注入漏洞

The BUFFALO Wi-Fi router is a series of routers developed by the Japanese company BUFFALO. The BUFFALO Wi-Fi router has a code injection vulnerability, which means that arbitrary code can be executed due to this flaw...

9.8CVSS7.5AI score0.00266EPSS

RedhatCVE•added 2025/11/08 8:59 a.m.•16 views

CVE-2025-46413

Use of password hash with insufficient computational effort issue exists in BUFFALO Wi-Fi router 'WSR-1800AX4 series'. When WPS is enabled, PIN code and/or Wi-Fi password may be obtained by an attacker...

5.3CVSS7.2AI score0.0011EPSS

NVD•added 2025/11/07 9:15 a.m.•11 views

CVE-2025-46413

5.3CVSS0.0011EPSS

CVE•added 2025/11/07 8:51 a.m.•10 views

CVE-2025-46413

CVE-2025-46413 affects BUFFALO WSR-1800AX4 series Wi‑Fi routers. The issue is use of a password hash with insufficient computational effort (CWE-916) when WPS is enabled, potentially allowing an attacker to obtain the PIN and/or Wi‑Fi password. Public documents identify the affected component as ...

5.3CVSS6.9AI score0.0011EPSS

Japan Vulnerability Notes•added 2025/10/16 2:16 a.m.•4 views

Buffalo Wi-Fi router WXR9300BE6P series vulnerable to path traversal

Overview Wi-Fi router WXR9300BE6P series provided by BUFFALO INC. contains the following vulnerability. Path traversal CWE-22 - CVE-2025-61941 Chuya Hayakawa of 00One, Inc. reported this vulnerability to JPCERT/CC. JPCERT/CC coordinated with the developer. Impact Arbitrary file may be altered by ...

8.6CVSS6.9AI score0.00474EPSS

Exploits0References4

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2018-1373

Malware in sbrugna...

8.8CVSS8.8AI score0.00729EPSS

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2015-8150

Malware in sbrugna...

6.8CVSS6.6AI score0.01107EPSS

VulnCheck KEV•added 2025/02/25 12:0 a.m.•2 views

VulnCheck KEV: CVE-2021-20092

The web interfaces of Buffalo WSR-2533DHPL2 firmware version = 1.02 and WSR-2533DHP3 firmware version = 1.24 do not properly restrict access to sensitive information from an unauthorized actor...

7.5CVSS7.3AI score0.0817EPSS

Exploits1References1

Tenable Nessus•added 2021/11/09 12:0 a.m.•119 views

Buffalo Router Path Traversal (CVE-2021-20090)

Binary data buffaloCVE-2021-20090pathtraversal.nbin...

9.8CVSS8.4AI score0.99983EPSS

Exploits5References3

Tenable Nessus•added 2021/08/04 12:0 a.m.•22 views

Buffalo Router Web Interface Detection

Binary data buffalowwwdetect.nbin...

7.3AI score

CNNVD•added 2021/05/31 12:0 a.m.•1 views

BUFFALO INC WSR-1166DHP3-BK 操作系统命令注入漏洞

Buffalo WSR-1166DHP3 and WSR-1166DHP4 A router from Buffalo WSR-1166DHP3 and WSR-1166DHP4 is vulnerable to operating system command injection, which can be exploited by attackers to execute arbitrary operating system commands with root privileges...

8.8CVSS6.1AI score0.00593EPSS

OSV•added 2021/04/29 3:15 p.m.•1 views

CVE-2021-20092

The web interfaces of Buffalo WSR-2533DHPL2 firmware version = 1.02 and WSR-2533DHP3 firmware version = 1.24 do not properly restrict access to sensitive information from an unauthorized actor...

7.5CVSS7.3AI score

CNNVD•added 2021/04/27 12:0 a.m.•1 views

Buffalo WSR-2533DHPL2 代码注入漏洞

Buffalo WSR-2533DHPL2 and WSR-2533DHP3 are routers from Buffalo Japan.The Buffalo WSR-2533DHPL2 and WSR-2533DHP3 are vulnerable to code injection, which can be exploited by attackers to remotely execute code...

8.8CVSS5.7AI score0.08689EPSS

Exploits1References3

CNVD•added 2018/04/11 12:0 a.m.•2 views

Buffalo WZR-1750DHP2 Arbitrary Code Execution Vulnerability

The Buffalo WZR-1750DHP2 is a router product from the Buffalo Group of Japan. A security vulnerability exists in the Buffalo WZR-1750DHP2 version 2.30 and earlier. An attacker can exploit the vulnerability to bypass authentication and execute arbitrary commands...

8.8CVSS7.5AI score0.00843EPSS

CNVD•added 2018/04/11 12:0 a.m.•2 views

Buffalo WZR-1750DHP2 Buffer Overflow Vulnerability

The Buffalo WZR-1750DHP2 is a router product from the Buffalo Group of Japan. A buffer overflow vulnerability exists in the Buffalo WZR-1750DHP2 version 2.30 and earlier. An attacker can exploit this vulnerability to execute arbitrary code with the help of specially crafted files...

9.3CVSS8.1AI score0.01585EPSS

CNVD•added 2018/04/11 12:0 a.m.•3 views

Buffalo WZR-1750DHP2 Arbitrary Command Execution Vulnerability

8.8CVSS7.4AI score0.00729EPSS

OSV•added 2018/04/09 1:29 p.m.•2 views

CVE-2018-0555

Buffer overflow in Buffalo WZR-1750DHP2 Ver.2.30 and earlier allows an attacker to execute arbitrary code via a specially crafted file...

7.8CVSS6.1AI score