40 matches found
CVE-2026-29516
Buffalo TeraStation NAS TS5400R firmware version 4.02-0.06 and prior contain an excessive file permissions vulnerability that allows authenticated attackers to read the /etc/shadow file by uploading and executing a PHP file through the webserver. Attackers can exploit world-readable permissions o...
CVE-2026-29516 Buffalo TeraStation TS5400R Excessive File Permissions Information Disclosure
Buffalo TeraStation NAS TS5400R firmware version 4.02-0.06 and prior contain an excessive file permissions vulnerability that allows authenticated attackers to read the /etc/shadow file by uploading and executing a PHP file through the webserver. Attackers can exploit world-readable permissions o...
CVE-2026-29516
Affected product : Buffalo TeraStation NAS TS5400R (firmware 4.02-0.06 and earlier). Vulnerability : excessive file permissions allow an authenticated attacker to read /etc/shadow by uploading and executing a PHP file via the webserver, enabling disclosure of hashed passwords for all accounts inc...
CVE-2026-29516 Buffalo TeraStation TS5400R Excessive File Permissions Information Disclosure
Buffalo TeraStation NAS TS5400R firmware version 4.02-0.06 and prior contain an excessive file permissions vulnerability that allows authenticated attackers to read the /etc/shadow file by uploading and executing a PHP file through the webserver. Attackers can exploit world-readable permissions o...
Buffalo TeraStation NAS TS5400R 安全漏洞
The Buffalo TeraStation NAS TS5400R is a rack-mounted network attached storage device from the Japanese company Buffalo. Versions of the Buffalo TeraStation NAS TS5400R between 4.02 and 0.06 and earlier contain security vulnerabilities. These vulnerabilities stem from improper file permission...
PT-2026-25798
Name of the Vulnerable Software and Affected Versions Buffalo TeraStation NAS TS5400R versions 4.02-0.06 and earlier Description An excessive file permissions issue exists in Buffalo TeraStation NAS TS5400R. Authenticated attackers can read the /etc/shadow file by uploading and executing a PHP fi...
EUVD-2006-5160
Malware in sbrugna...
EUVD-2023-43328
Malicious code in bioql PyPI...
CVE-2023-39620
An Issue in Buffalo America, Inc. TeraStation NAS TS5410R v.5.00 thru v.0.07 allows a remote attacker to obtain sensitive information via the guest account function...
CVE-2023-39620
An Issue in Buffalo America, Inc. TeraStation NAS TS5410R v.5.00 thru v.0.07 allows a remote attacker to obtain sensitive information via the guest account function...
CVE-2023-39620
An Issue in Buffalo America, Inc. TeraStation NAS TS5410R v.5.00 thru v.0.07 allows a remote attacker to obtain sensitive information via the guest account function...
CVE-2023-39620
An Issue in Buffalo America, Inc. TeraStation NAS TS5410R v.5.00 thru v.0.07 allows a remote attacker to obtain sensitive information via the guest account function...
Information disclosure
An Issue in Buffalo America, Inc. TeraStation NAS TS5410R v.5.00 thru v.0.07 allows a remote attacker to obtain sensitive information via the guest account function...
CVE-2023-39620
An Issue in Buffalo America, Inc. TeraStation NAS TS5410R v.5.00 thru v.0.07 allows a remote attacker to obtain sensitive information via the guest account function...
CVE-2023-39620
An Issue in Buffalo America, Inc. TeraStation NAS TS5410R v.5.00 thru v.0.07 allows a remote attacker to obtain sensitive information via the guest account function...
Buffalo TeraStation NAS TS5410R Security Vulnerability
The Buffalo TeraStation NAS TS5410R is a NAS device from Buffalo, Japan. A security vulnerability exists in the Buffalo TeraStation NAS TS5410R versions v.5.00 through v.0.07, which originates from a vulnerability that could allow a remote attacker to gain access to sensitive information via the...
CVE-2023-39620
Affected product: Buffalo America, Inc. TeraStation NAS TS5410R (versions 5.00 through 0.07). Vulnerability summary: Remote attacker could obtain sensitive information via the guest account function, causing an information-disclosure issue. Root cause (as reported): Not explicitly detailed in the...
PT-2023-27039 · Buffalo America · Terastation Nas Ts5410R
Name of the Vulnerable Software and Affected Versions: Buffalo America, Inc. TeraStation NAS TS5410R versions 5.00 through 0.07 Description: The issue allows a remote attacker to obtain sensitive information via the guest account function. Recommendations: For versions 5.00 through 0.07, consider...
Buffalo TeraStation Network Attached Storage (NAS) 1.66 - Authentication Bypass Vulnerability
Exploit Title: Buffalo TeraStation Network Attached Storage NAS 1.66 - Authentication Bypass Exploit Author: JORDAN GLOVER Type: WEBAPPS Platform: HARDWARE Vendor Homepage: https://www.buffalotech.com/ Model: TeraStation Series Firmware Version: 1.66 Tested on: Windows 10 An authentication bypass...
Buffalo TeraStation Network Attached Storage (NAS) 1.66 Authentication Bypass
Exploit Title: Buffalo TeraStation Network Attached Storage NAS 1.66 - Authentication Bypass Date: 2022-08-11 Exploit Author: JORDAN GLOVER Type: WEBAPPS Platform: HARDWARE Vendor Homepage: https://www.buffalotech.com/ Model: TeraStation Series Firmware Version: 1.66 Tested on: Windows 10 An...