Vulnerabilities > Buffalotech > Wnc01Wh Firmware > Medium

DATE CVE VULNERABILITY TITLE RISK
2017-06-09 CVE-2016-7826 Path Traversal vulnerability in Buffalotech Wnc01Wh Firmware 1.0.0.8
Directory traversal vulnerability in Buffalo WNC01WH devices with firmware version 1.0.0.8 and earlier allows authenticated attackers to read arbitrary files via specially crafted POST requests.
network
low complexity
buffalotech CWE-22
6.5
6.5
2017-06-09 CVE-2016-7825 Path Traversal vulnerability in Buffalotech Wnc01Wh Firmware 1.0.0.8
Directory traversal vulnerability in Buffalo WNC01WH devices with firmware version 1.0.0.8 and earlier allows authenticated attackers to read arbitrary files via specially crafted commands.
network
low complexity
buffalotech CWE-22
6.5
6.5
2017-06-09 CVE-2016-7823 Cross-site Scripting vulnerability in Buffalotech Wnc01Wh Firmware 1.0.0.8
Cross-site scripting vulnerability in Buffalo WNC01WH devices with firmware version 1.0.0.8 and earlier allows authenticated attackers to inject arbitrary web script or HTML via unspecified vectors.
low complexity
buffalotech CWE-79
4.3
4.3
2017-06-09 CVE-2016-7821 Improper Input Validation vulnerability in Buffalotech Wnc01Wh Firmware 1.0.0.8
Buffalo WNC01WH devices with firmware version 1.0.0.8 and earlier allow remote attackers to cause a denial of service against the management screen via unspecified vectors.
network
low complexity
buffalotech CWE-20
6.5
6.5