Vulnerabilities > Buffalotech > WHR 300Hp2 Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2015-06-09 CVE-2014-9284 OS Command Injection vulnerability in Buffalotech products
The Buffalo WHR-1166DHP 1.60 and earlier, WSR-600DHP 1.60 and earlier, WHR-600D 1.60 and earlier, WHR-300HP2 1.60 and earlier, WMR-300 1.60 and earlier, WEX-300 1.60 and earlier, and BHR-4GRV2 1.04 and earlier routers allow remote authenticated users to execute arbitrary OS commands via unspecified vectors.
low complexity
buffalotech CWE-78
7.7