CVE-2018-13324
Buffalo TS5600D1206 NAS firmware (version 3.61-0.10) contains an authentication bypass in nasapi. The root cause is improper access control that allows an attacker to bypass login by sending a modified HTTP Host header. Public references in the connected documents corroborate this vulnerability a...