PT-2024-21282 · Buffalo · Buffalo Wireless Lan Routers

Satoru Nagaoka

Published

2024-04-15

Updated

2025-06-30

CVE-2024-26023

CVSS v3.1

4.2

Medium

Vector

AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L

Name of the Vulnerable Software and Affected Versions BUFFALO wireless LAN routers (affected versions not specified)

Description The issue allows a logged-in user to execute arbitrary OS commands, which is an OS command injection vulnerability in BUFFALO wireless LAN routers.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

OS Command Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-78

Related Identifiers

CVE-2024-26023

Affected Products

Buffalo Wireless Lan Routers

PT-2024-21282 · Buffalo · Buffalo Wireless Lan Routers

CVE-2024-26023

Weakness Enumeration

Related Identifiers

Affected Products

References · 8