Vulnerabilities > Buffalo > WEX 1800Ax4 Firmware > 1.13
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-12-19 | CVE-2022-43466 | OS Command Injection vulnerability in Buffalo products OS command injection vulnerability in Buffalo network devices allows a network-adjacent attacker with an administrative privilege to execute an arbitrary OS command if a specially crafted request is sent to a specific CGI program. | 6.8 |
| 2022-12-19 | CVE-2022-43486 | Unspecified vulnerability in Buffalo products Hidden functionality vulnerability in Buffalo network devices allows a network-adjacent attacker with an administrative privilege to enable the debug functionalities and execute an arbitrary command on the affected devices. low complexity buffalo | 6.8 |