Known Vulnerabilities
CVE-2024-26023
OS command injection vulnerability in BUFFALO wireless LAN routers allows a logged-in user to execute arbitrary OS commands.
MEDIUM
CVSS 4.2
Published Apr 15, 2024
CVE-2024-23486
Plaintext storage of a password issue exists in BUFFALO wireless LAN routers, which may allow a network-adjacent unauthenticated attacker with access to the product's login page may obtain configured credentials.
CRITICAL
CVSS 9.8
Published Apr 15, 2024