Vulnerabilities > Buffalotech

DATE	CVE	VULNERABILITY TITLE	RISK
2011-05-09	CVE-2011-1324	Cross-Site Request Forgery (CSRF) vulnerability in Buffalotech products Multiple cross-site request forgery (CSRF) vulnerabilities in the management screen on Buffalo WHR, WZR2, WZR, WER, and BBR series routers with firmware 1.x; BHR-4RV and FS-G54 routers with firmware 2.x; and AS-100 routers allow remote attackers to hijack the authentication of administrators for requests that modify settings, as demonstrated by changing the login password. network buffalotech CWE-352	5.8
2007-09-11	CVE-2007-4822	Cross-Site Request Forgery (CSRF) vulnerability in Buffalotech Airstation Whr-G54S 1.20 Cross-site request forgery (CSRF) vulnerability in the device management interface in Buffalo AirStation WHR-G54S 1.20 allows remote attackers to make configuration changes as an administrator via HTTP requests to certain HTML pages in the res parameter with an inp req parameter to cgi-bin/cgi, as demonstrated by accessing (1) ap.html and (2) filter_ip.html. network buffalotech oracle CWE-352	4.3
2006-10-10	CVE-2006-5175	Cross-Site Request Forgery (CSRF) vulnerability in Buffalotech Terastation Hd-Htgl Firmware 2.05Beta1 Cross-site request forgery (CSRF) vulnerability in the administrative interface for the TeraStation HD-HTGL firmware 2.05 beta 1 and earlier allows remote attackers to modify configurations or delete arbitrary data via unspecified vectors. network high complexity buffalotech CWE-352	7.6

Vulnerabilities > Buffalotech {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Buffalotech"}]}