Vulnerabilities > CVE-2021-20730 - Unspecified vulnerability in Buffalo Wsr-1166Dhp3 Firmware and Wsr-1166Dhp4 Firmware

CVSS 4.3 - MEDIUM

Attack vector

ADJACENT_NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

NONE

low complexity

buffalo

NVD

Published: 2021-06-09

Updated: 2022-06-28

Summary

Improper access control vulnerability in WSR-1166DHP3 firmware Ver.1.16 and prior and WSR-1166DHP4 firmware Ver.1.02 and prior allows an attacker to obtain configuration information via unspecified vectors.

Vulnerable Configurations

Part	Description	Count
OS	Buffalo Buffalo WSR 1166Dhp4 Firmware - Buffalo WSR 1166Dhp4 Firmware 1.02 Buffalo WSR 1166Dhp3 Firmware - Buffalo WSR 1166Dhp3 Firmware 1.16	4
Hardware	Buffalo Buffalo WSR 1166Dhp4 - Buffalo WSR 1166Dhp3 -	2

References

https://jvn.jp/en/vu/JVNVU92862829/index.html
https://www.buffalo.jp/news/detail/20210531-01.html