CVE-2021-3511

Name of the Vulnerable Software and Affected Versions: Buffalo broadband routers versions 1.99 and prior Buffalo DWR-HP-G300NH firmware versions 1.83 and prior Buffalo HW-450HP-ZWE firmware versions 1.99 and prior Buffalo WHR-300HP firmware versions 1.99 and prior Buffalo WHR-300 firmware versions 1.99 and prior Buffalo WHR-G301N firmware versions 1.86 and prior Buffalo WHR-HP-G300N firmware versions 1.99 and prior Buffalo WHR-HP-GN firmware versions 1.86 and prior Buffalo WPL-05G300 firmware versions 1.87 and prior Buffalo WZR-450HP-CWT firmware versions 1.99 and prior Buffalo WZR-450HP-UB firmware versions 1.99 and prior Buffalo WZR-HP-AG300H firmware versions 1.75 and prior Buffalo WZR-HP-G300NH firmware versions 1.83 and prior Buffalo WZR-HP-G301NH firmware versions 1.83 and prior Buffalo WZR-HP-G302H firmware versions 1.85 and prior Buffalo WZR-HP-G450H firmware versions 1.89 and prior Buffalo WZR-300HP firmware versions 1.99 and prior Buffalo WZR-450HP firmware versions 1.99 and prior Buffalo WZR-600DHP firmware versions 1.99 and prior Buffalo WZR-D1100H firmware versions 1.99 and prior Buffalo FS-HP-G300N firmware versions 3.32 and prior Buffalo FS-600DHP firmware versions 3.38 and prior Buffalo FS-R600DHP firmware versions 3.39 and prior Buffalo FS-G300N firmware versions 3.13 and prior

Description: The issue allows remote unauthenticated attackers to obtain sensitive information, such as configuration data, via unspecified vectors.

Recommendations: For Buffalo broadband routers and all listed firmware versions, update to a version later than the specified prior version to resolve the issue. As a temporary workaround, consider restricting access to the router's configuration interface until a patch is available. Avoid using unspecified vectors that may be vulnerable to information disclosure until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.