3 matches found
Buffalo TeraStation Command Injection (CVE-2018-13318; CVE-2018-13320; CVE-2018-13321)
A command Injection vulnerability exists in Buffalo TeraStation. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
CVE-2018-13321
Incorrect access controls in nasapi in Buffalo TS5600D1206 version 3.61-0.10 allow attackers to call dangerous internal functions via the "method" parameter...
CVE-2018-13321
CVE-2018-13321 affects Buffalo TS5600D1206 NAS devices (nasapi) with version 3.61-0.10. Root cause: incorrect access controls that let an attacker invoke dangerous internal functions via the method parameter. Documented impact indicates high severity (CVSS3: 8.8; confidentiality, integrity, and a...