CVE-2017-2274

Cross-site scripting vulnerability (CVE-2017-2274) affects Buffalo WMR-433 and WMR-433W wireless LAN routers. WMR-433: firmware 1.02 and earlier; WMR-433W: firmware 1.40 and earlier. An attacker can inject arbitrary web script or HTML via unspecified vectors, potentially affecting the device’s we...

JVN#48413726: Multiple vulnerabilities in multiple Buffalo wireless LAN routers

WMR-433 and WMR-433W provided by BUFFALO INC. are wireless LAN routers. WMR-433 and WMR-433W contain multiple vulnerabilities listed below. Cross-site Request Forgery CWE-352 - CVE-2017-2273 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L| Base Score: 4.3...