Vulnerabilities > Buffalo > BS Gs2048 Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-04-11 | CVE-2023-24464 | Cross-site Scripting vulnerability in Buffalo products Stored-cross-site scripting vulnerability in Buffalo network devices allows an attacker with access to the web management console of the product to execute arbitrary JavaScript on a legitimate user's web browser. | 5.4 |
| 2023-04-11 | CVE-2023-24544 | Unspecified vulnerability in Buffalo products Improper access control vulnerability in Buffalo network devices allows a network-adjacent attacker to obtain specific files of the product. low complexity buffalo | 8.1 |
| 2023-04-11 | CVE-2023-26588 | Exposure of Resource to Wrong Sphere vulnerability in Buffalo products Use of hard-coded credentials vulnerability in Buffalo network devices allows an attacker to access the debug function of the product. | 7.5 |