CVE-2026-33280

High CVSS: 8.6

Hidden functionality issue exists in BUFFALO Wi-Fi router products, which may allow an attacker to gain access to the product’s debugging functionality, resulting in the execution of arbitrary OS commands.

Vendor

Buffalo

Product

Wcr-1166dhpl Firmware

CWE

CWE-912

Yayın Tarihi

2026-03-27 06:16:38

Güncelleme

2026-03-31 19:03:40

Source Identifier

vultures@jpcert.or.jp

KEV Date Added

Kategoriler

CWE-912 Wcr-1166dhpl Firmware HIGH Buffalo 2026

Referanslar

https://jvn.jp/en/jp/JVN83788689/ https://www.buffalo.jp/news/detail/20260323-01.html

Benzer Kayıtlar

High

CVE-2026-27650

OS Command Injection vulnerability exists in BUFFALO Wi-Fi router products. If this vulnerability is exploited, an arbit…

High

CVE-2026-32669

Code injection vulnerability exists in BUFFALO Wi-Fi router products. If this vulnerability is exploited, an arbitrary c…

High

CVE-2026-32678

Authentication bypass issue exists in BUFFALO Wi-Fi router products, which may allow an attacker to alter critical confi…

Medium

CVE-2026-33366

Missing authentication for critical function vulnerability in BUFFALO Wi-Fi router products may allow an attacker to for…