Vulnerabilities > CVE-2022-43486 - Unspecified vulnerability in Buffalo products

CVSS 6.8 - MEDIUM

Attack vector

ADJACENT_NETWORK

Attack complexity

LOW

Privileges required

HIGH

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

low complexity

buffalo

NVD

Published: 2022-12-19

Updated: 2024-02-14

Summary

Hidden functionality vulnerability in Buffalo network devices allows a network-adjacent attacker with an administrative privilege to enable the debug functionalities and execute an arbitrary command on the affected devices.

Vulnerable Configurations

Part	Description	Count
OS	Buffalo Buffalo WSR 3200Ax4S Firmware - Buffalo WSR 3200Ax4S Firmware 1.26 Buffalo WSR 3200Ax4B Firmware 1.25 Buffalo WSR 2533Dhp2 Firmware - Buffalo WSR 2533Dhp2 Firmware 1.22 Buffalo WSR A2533Dhp2 Firmware - Buffalo WSR A2533Dhp2 Firmware 1.22 Buffalo WSR 2533Dhp3 Firmware - Buffalo WSR 2533Dhp3 Firmware 1.26 Buffalo WSR A2533Dhp3 Firmware - Buffalo WSR A2533Dhp3 Firmware 1.26 Buffalo WSR 2533Dhpl2 Firmware - Buffalo WSR 2533Dhpl2 Firmware 1.03 Buffalo WSR 2533Dhpls Firmware - Buffalo WSR 2533Dhpls Firmware 1.07 Buffalo WEX 1800Ax4 Firmware - Buffalo WEX 1800Ax4 Firmware 1.13 Buffalo WEX 1800Ax4Ea Firmware - Buffalo WEX 1800Ax4Ea Firmware 1.13 Buffalo WSR 2533Dhp Firmware * Buffalo WSR 2533Dhpl Firmware * Buffalo WCR 1166Ds Firmware 1.30	22
Hardware	Buffalo Buffalo WSR 3200Ax4S - Buffalo WSR 3200Ax4B - Buffalo WSR 2533Dhp2 - Buffalo WSR A2533Dhp2 - Buffalo WSR 2533Dhp3 - Buffalo WSR A2533Dhp3 - Buffalo WSR 2533Dhpl2 - Buffalo WSR 2533Dhpls - Buffalo WEX 1800Ax4 - Buffalo WEX 1800Ax4Ea - Buffalo WSR 2533Dhp - Buffalo WSR 2533Dhpl - Buffalo WCR 1166Ds -	13

Summary

Vulnerable Configurations

References