{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2022-39044", "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce", "assignerShortName": "jpcert", "dateUpdated": "2025-04-23T16:07:13.452Z", "dateReserved": "2022-09-27T00:00:00.000Z", "datePublished": "2022-12-07T00:00:00.000Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce", "shortName": "jpcert", "dateUpdated": "2022-12-07T00:00:00.000Z"}, "descriptions": [{"lang": "en", "value": "Hidden functionality vulnerability in multiple Buffalo network devices allows a network-adjacent attacker with an administrative privilege to execute an arbitrary OS command. The affected products/versions are as follows: WCR-300 firmware Ver. 1.87 and earlier, WHR-HP-G300N firmware Ver. 2.00 and earlier, WHR-HP-GN firmware Ver. 1.87 and earlier, WPL-05G300 firmware Ver. 1.88 and earlier, WZR-300HP firmware Ver. 2.00 and earlier, WZR-450HP firmware Ver. 2.00 and earlier, WZR-600DHP firmware Ver. 2.00 and earlier, WZR-900DHP firmware Ver. 1.15 and earlier, WZR-HP-AG300H firmware Ver. 1.76 and earlier, WZR-HP-G302H firmware Ver. 1.86 and earlier, WLAE-AG300N firmware Ver. 1.86 and earlier, FS-600DHP firmware Ver. 3.40 and earlier, FS-G300N firmware Ver. 3.14 and earlier, FS-HP-G300N firmware Ver. 3.33 and earlier, FS-R600DHP firmware Ver. 3.40 and earlier, BHR-4GRV firmware Ver. 2.00 and earlier, DWR-HP-G300NH firmware Ver. 1.84 and earlier, DWR-PG firmware Ver. 1.83 and earlier, HW-450HP-ZWE firmware Ver. 2.00 and earlier, WER-A54G54 firmware Ver. 1.43 and earlier, WER-AG54 firmware Ver. 1.43 and earlier, WER-AM54G54 firmware Ver. 1.43 and earlier, WER-AMG54 firmware Ver. 1.43 and earlier, WHR-300 firmware Ver. 2.00 and earlier, WHR-300HP firmware Ver. 2.00 and earlier, WHR-AM54G54 firmware Ver. 1.43 and earlier, WHR-AMG54 firmware Ver. 1.43 and earlier, WHR-AMPG firmware Ver. 1.52 and earlier, WHR-G firmware Ver. 1.49 and earlier, WHR-G300N firmware Ver. 1.65 and earlier, WHR-G301N firmware Ver. 1.87 and earlier, WHR-G54S firmware Ver. 1.43 and earlier, WHR-G54S-NI firmware Ver. 1.24 and earlier, WHR-HP-AMPG firmware Ver. 1.43 and earlier, WHR-HP-G firmware Ver. 1.49 and earlier, WHR-HP-G54 firmware Ver. 1.43 and earlier, WLI-H4-D600 firmware Ver. 1.88 and earlier, WLI-TX4-AG300N firmware Ver. 1.53 and earlier, WS024BF firmware Ver. 1.60 and earlier, WS024BF-NW firmware Ver. 1.60 and earlier, WZR2-G108 firmware Ver. 1.33 and earlier, WZR2-G300N firmware Ver. 1.55 and earlier, WZR-450HP-CWT firmware Ver. 2.00 and earlier, WZR-450HP-UB firmware Ver. 2.00 and earlier, WZR-600DHP2 firmware Ver. 1.15 and earlier, WZR-AGL300NH firmware Ver. 1.55 and earlier, WZR-AMPG144NH firmware Ver. 1.49 and earlier, WZR-AMPG300NH firmware Ver. 1.51 and earlier, WZR-D1100H firmware Ver. 2.00 and earlier, WZR-G144N firmware Ver. 1.48 and earlier, WZR-G144NH firmware Ver. 1.48 and earlier, WZR-HP-G300NH firmware Ver. 1.84 and earlier, WZR-HP-G301NH firmware Ver. 1.84 and earlier, and WZR-HP-G450H firmware Ver. 1.90 and earlier."}], "affected": [{"vendor": "BUFFALO INC.", "product": "Buffalo network devices", "versions": [{"version": "A wide range of products is affected. For the specific products/versions information, see the URLs provided by the vendor and JVN which are listed in [Reference] section.", "status": "affected"}]}], "references": [{"url": "https://www.buffalo.jp/news/detail/20221003-01.html"}, {"url": "https://jvn.jp/en/vu/JVNVU92805279/index.html"}], "problemTypes": [{"descriptions": [{"type": "text", "lang": "en", "description": "Hidden Functionality"}]}]}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T11:10:32.333Z"}, "title": "CVE Program Container", "references": [{"url": "https://www.buffalo.jp/news/detail/20221003-01.html", "tags": ["x_transferred"]}, {"url": "https://jvn.jp/en/vu/JVNVU92805279/index.html", "tags": ["x_transferred"]}]}, {"problemTypes": [{"descriptions": [{"type": "CWE", "lang": "en", "description": "CWE-noinfo Not enough information"}]}], "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.8, "attackVector": "ADJACENT_NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2025-04-23T16:06:36.745741Z", "id": "CVE-2022-39044", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-04-23T16:07:13.452Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://www.buffalo.jp/news/detail/20221003-01.html", "tags": ["x_transferred"]}, {"url": "https://jvn.jp/en/vu/JVNVU92805279/index.html", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T11:10:32.333Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.8, "attackVector": "ADJACENT_NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2022-39044", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2025-04-23T16:06:36.745741Z"}}}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "description": "CWE-noinfo Not enough information"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-04-23T16:06:48.028Z"}}], "cna": {"affected": [{"vendor": "BUFFALO INC.", "product": "Buffalo network devices", "versions": [{"status": "affected", "version": "A wide range of products is affected. For the specific products/versions information, see the URLs provided by the vendor and JVN which are listed in [Reference] section."}]}], "references": [{"url": "https://www.buffalo.jp/news/detail/20221003-01.html"}, {"url": "https://jvn.jp/en/vu/JVNVU92805279/index.html"}], "descriptions": [{"lang": "en", "value": "Hidden functionality vulnerability in multiple Buffalo network devices allows a network-adjacent attacker with an administrative privilege to execute an arbitrary OS command. The affected products/versions are as follows: WCR-300 firmware Ver. 1.87 and earlier, WHR-HP-G300N firmware Ver. 2.00 and earlier, WHR-HP-GN firmware Ver. 1.87 and earlier, WPL-05G300 firmware Ver. 1.88 and earlier, WZR-300HP firmware Ver. 2.00 and earlier, WZR-450HP firmware Ver. 2.00 and earlier, WZR-600DHP firmware Ver. 2.00 and earlier, WZR-900DHP firmware Ver. 1.15 and earlier, WZR-HP-AG300H firmware Ver. 1.76 and earlier, WZR-HP-G302H firmware Ver. 1.86 and earlier, WLAE-AG300N firmware Ver. 1.86 and earlier, FS-600DHP firmware Ver. 3.40 and earlier, FS-G300N firmware Ver. 3.14 and earlier, FS-HP-G300N firmware Ver. 3.33 and earlier, FS-R600DHP firmware Ver. 3.40 and earlier, BHR-4GRV firmware Ver. 2.00 and earlier, DWR-HP-G300NH firmware Ver. 1.84 and earlier, DWR-PG firmware Ver. 1.83 and earlier, HW-450HP-ZWE firmware Ver. 2.00 and earlier, WER-A54G54 firmware Ver. 1.43 and earlier, WER-AG54 firmware Ver. 1.43 and earlier, WER-AM54G54 firmware Ver. 1.43 and earlier, WER-AMG54 firmware Ver. 1.43 and earlier, WHR-300 firmware Ver. 2.00 and earlier, WHR-300HP firmware Ver. 2.00 and earlier, WHR-AM54G54 firmware Ver. 1.43 and earlier, WHR-AMG54 firmware Ver. 1.43 and earlier, WHR-AMPG firmware Ver. 1.52 and earlier, WHR-G firmware Ver. 1.49 and earlier, WHR-G300N firmware Ver. 1.65 and earlier, WHR-G301N firmware Ver. 1.87 and earlier, WHR-G54S firmware Ver. 1.43 and earlier, WHR-G54S-NI firmware Ver. 1.24 and earlier, WHR-HP-AMPG firmware Ver. 1.43 and earlier, WHR-HP-G firmware Ver. 1.49 and earlier, WHR-HP-G54 firmware Ver. 1.43 and earlier, WLI-H4-D600 firmware Ver. 1.88 and earlier, WLI-TX4-AG300N firmware Ver. 1.53 and earlier, WS024BF firmware Ver. 1.60 and earlier, WS024BF-NW firmware Ver. 1.60 and earlier, WZR2-G108 firmware Ver. 1.33 and earlier, WZR2-G300N firmware Ver. 1.55 and earlier, WZR-450HP-CWT firmware Ver. 2.00 and earlier, WZR-450HP-UB firmware Ver. 2.00 and earlier, WZR-600DHP2 firmware Ver. 1.15 and earlier, WZR-AGL300NH firmware Ver. 1.55 and earlier, WZR-AMPG144NH firmware Ver. 1.49 and earlier, WZR-AMPG300NH firmware Ver. 1.51 and earlier, WZR-D1100H firmware Ver. 2.00 and earlier, WZR-G144N firmware Ver. 1.48 and earlier, WZR-G144NH firmware Ver. 1.48 and earlier, WZR-HP-G300NH firmware Ver. 1.84 and earlier, WZR-HP-G301NH firmware Ver. 1.84 and earlier, and WZR-HP-G450H firmware Ver. 1.90 and earlier."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "text", "description": "Hidden Functionality"}]}], "providerMetadata": {"orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce", "shortName": "jpcert", "dateUpdated": "2022-12-07T00:00:00.000Z"}}}, "cveMetadata": {"cveId": "CVE-2022-39044", "state": "PUBLISHED", "dateUpdated": "2025-04-23T16:07:13.452Z", "dateReserved": "2022-09-27T00:00:00.000Z", "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce", "datePublished": "2022-12-07T00:00:00.000Z", "assignerShortName": "jpcert"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:wcr-300_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "7F9857BF-88E3-49D3-8645-7E717B869223", "versionEndIncluding": "1.87", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:wcr-300:-:*:*:*:*:*:*:*", "matchCriteriaId": "00FE286D-145C-4B81-AFEF-ADC6194458D8", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:whr-hp-g300n_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "982A122B-A741-4CC0-8508-008019B43E55", "versionEndIncluding": "2.00", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:whr-hp-g300n:-:*:*:*:*:*:*:*", "matchCriteriaId": "D7E26183-35D3-4A44-8D9A-AB358957C75F", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:whr-hp-gn_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "AF7BDF19-6531-4B07-BDEE-75714897829A", "versionEndIncluding": "1.87", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:whr-hp-gn:-:*:*:*:*:*:*:*", "matchCriteriaId": "6BC10377-CF91-43A5-BC3F-C690F291535A", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:wpl-05g300_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "0C151CE4-DE3A-4318-B239-166E2EFDEFFC", "versionEndIncluding": "1.88", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:wpl-05g300:-:*:*:*:*:*:*:*", "matchCriteriaId": "C6C24CCE-813A-4F11-B4A5-2AF075018F2A", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:wzr-300hp_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "987542D2-0324-4EAC-B286-8890DEC17054", "versionEndIncluding": "2.00", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:wzr-300hp:-:*:*:*:*:*:*:*", "matchCriteriaId": "80FFBDA4-E1A4-46CC-8EE0-6C92CB5C0A03", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:wzr-450hp_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "D05D42D1-9A42-4C9B-9EE2-26A2470C3548", "versionEndIncluding": "2.00", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:wzr-450hp:-:*:*:*:*:*:*:*", "matchCriteriaId": "6014747F-30BA-4C65-8340-CA16C886A45B", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:wzr-600dhp_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "BE46751B-8FA3-4D8C-AC9D-F5E8025565B8", "versionEndIncluding": "2.00", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:wzr-600dhp:-:*:*:*:*:*:*:*", "matchCriteriaId": "06AF9040-7F63-4E80-82DD-7448320BC940", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:wzr-900dhp_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "F3669EA6-95FC-4C23-9B48-6FD85011125F", "versionEndIncluding": "1.15", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:wzr-900dhp:-:*:*:*:*:*:*:*", "matchCriteriaId": "B8BD47F3-29D0-4B34-A346-C0042FBD75ED", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:wzr-hp-ag300h_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "F10C1B1A-5B8E-43BE-B39A-7D66F1DE966C", "versionEndIncluding": "1.76", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:wzr-hp-ag300h:-:*:*:*:*:*:*:*", "matchCriteriaId": "D1DBC06D-0003-4196-A360-59657454DAF6", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:wzr-hp-g302h_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "1DA69869-526D-4C1D-A416-ACCF248C9F09", "versionEndIncluding": "1.86", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:wzr-hp-g302h:-:*:*:*:*:*:*:*", "matchCriteriaId": "CBE42D0C-2181-47E3-87AA-A50C0C3ED002", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:wlae-ag300n_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "23AA7606-A4E1-4A0C-9EF3-EE06FCC416CE", "versionEndIncluding": "1.86", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:wlae-ag300n:-:*:*:*:*:*:*:*", "matchCriteriaId": "D2E1CC3A-DF01-4931-AEDE-5F7B49AEFFA4", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:fs-600dhp_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "C3D53344-2D32-4FE5-81A3-FB1C97F74FDF", "versionEndIncluding": "3.40", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:fs-600dhp:-:*:*:*:*:*:*:*", "matchCriteriaId": "AB3511D6-1738-43DD-ACBB-76D5C998906E", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:fs-g300n_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "E09DA2DF-562A-4F01-BF10-9E1CD2DC8344", "versionEndIncluding": "3.14", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:fs-g300n:-:*:*:*:*:*:*:*", "matchCriteriaId": "84A229AF-D4F8-45CC-BAC1-792A24CAA6CF", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:fs-hp-g300n_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "DE99D55C-0A44-4A27-A723-CFD6208655C7", "versionEndIncluding": "3.33", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:fs-hp-g300n:-:*:*:*:*:*:*:*", "matchCriteriaId": "E8BAF7C5-60B2-445A-9FB5-99FE0CDBEA3A", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:fs-r600dhp_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "B522994A-16DD-4E9C-A975-9B589B4FD41C", "versionEndIncluding": "3.40", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:fs-r600dhp:-:*:*:*:*:*:*:*", "matchCriteriaId": "88A96BC7-410E-4341-A91C-343E44BEA3F5", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:bhr-4grv_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "E321851E-A986-4782-AC4A-4EAF4D548F29", "versionEndIncluding": "2.00", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:bhr-4grv:-:*:*:*:*:*:*:*", "matchCriteriaId": "48780EC9-0E32-4DB5-91C2-3DD9048BCDA1", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:dwr-hp-g300nh_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "1829DD92-381E-4BF6-880E-BB5FD1F69EC0", "versionEndIncluding": "1.84", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:dwr-hp-g300nh:-:*:*:*:*:*:*:*", "matchCriteriaId": "FE96F509-FF8C-409B-BB40-E05A9F722554", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:dwr-pg_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "25BB642A-A899-4925-9F5D-811D7F1B603F", "versionEndIncluding": "1.83", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:dwr-pg:-:*:*:*:*:*:*:*", "matchCriteriaId": "FBE17F37-9FAA-466C-A0FD-21F482888817", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:hw-450hp-zwe_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "E9623821-D3F8-46C3-8B85-CBD86B8BC1D9", "versionEndIncluding": "2.00", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:hw-450hp-zwe:-:*:*:*:*:*:*:*", "matchCriteriaId": "54BE2F24-8A3F-426F-B935-62F82F83E457", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:wer-a54g54_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "D756BCE4-9B1B-4F79-A44C-A9ACBE8516CF", "versionEndIncluding": "1.43", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:wer-a54g54:-:*:*:*:*:*:*:*", "matchCriteriaId": "3AB8E6C2-6BC4-4B3F-816C-9F53A98B79D3", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:wer-ag54_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "CDAE35E0-1BDC-4FCF-BE9A-5204EF857489", "versionEndIncluding": "1.43", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:wer-ag54:-:*:*:*:*:*:*:*", "matchCriteriaId": "F23D371B-D9CF-4E5C-BBC1-959983287D8C", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:wer-am54g54_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "29E2E2AA-4511-40E8-9302-10003A6B39D9", "versionEndIncluding": "1.43", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:wer-am54g54:-:*:*:*:*:*:*:*", "matchCriteriaId": "4E83F7AC-6B96-46CB-95B2-049E470907BA", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:wer-amg54_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "2EA868E0-7378-4955-9F02-311FBFC1964C", "versionEndIncluding": "1.43", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:wer-amg54:-:*:*:*:*:*:*:*", "matchCriteriaId": "41C3D4E2-E9B2-49F2-AB8C-5E68F86CD403", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:whr-300_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "22F16930-7C94-4D35-ABCF-1F3826D29C4F", "versionEndIncluding": "2.00", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:whr-300:-:*:*:*:*:*:*:*", "matchCriteriaId": "342ABB1C-DEB2-4B34-B5FB-A3D072B4760F", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:whr-300hp_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "40FFADA7-C9F1-471F-A80C-C266911F70FF", "versionEndIncluding": "2.00", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:whr-300hp:-:*:*:*:*:*:*:*", "matchCriteriaId": "697F6576-D774-4DC8-A2C9-A57F4E037F24", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:whr-am54g54_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "3A5BA7AE-3137-4DDA-9EAC-F2232E579D2D", "versionEndIncluding": "1.43", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:whr-am54g54:-:*:*:*:*:*:*:*", "matchCriteriaId": "34F300C3-254A-4472-BBEB-EC5D66B34F4F", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:whr-amg54_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "E14B84AC-99CC-4F3F-A397-2F9CAF7D5743", "versionEndIncluding": "1.43", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:whr-amg54:-:*:*:*:*:*:*:*", "matchCriteriaId": "4D3F4EF6-F1AE-48B9-9DCE-69B59CE4D322", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:whr-ampg_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "20A89591-B558-4DF1-AE0B-F8742763EB2A", "versionEndIncluding": "1.52", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:whr-ampg:-:*:*:*:*:*:*:*", "matchCriteriaId": "4893ABE3-057A-4C36-B14A-451364915AD0", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:whr-g_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "8D611E41-B6ED-4CA5-9128-252D1AE12153", "versionEndIncluding": "1.49", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:whr-g:-:*:*:*:*:*:*:*", "matchCriteriaId": "A16A1BEE-ADE7-44D5-AA40-6FC544A53E17", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:whr-g300n_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "6A4CBD55-196B-49D3-950F-2F9CFA54CDC2", "versionEndIncluding": "1.65", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:whr-g300n:-:*:*:*:*:*:*:*", "matchCriteriaId": "15535155-50A2-4F90-8EA2-D131A5566A9C", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:whr-g301n_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "0813877E-48F8-404A-81A3-E3D35C063C40", "versionEndIncluding": "1.87", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:whr-g301n:-:*:*:*:*:*:*:*", "matchCriteriaId": "95600434-8888-40AA-9FF4-273031A9C316", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:whr-g54s_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "5756C476-9EA6-4C93-8DB2-8BA15BE07D60", "versionEndIncluding": "1.43", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:whr-g54s:-:*:*:*:*:*:*:*", "matchCriteriaId": "67A005F9-33D4-4B0D-8D5A-72EF66AED446", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:whr-g54s-ni_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "A498E04B-44F7-404A-97D5-115A1FCCC7F7", "versionEndIncluding": "1.24", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:whr-g54s-ni:-:*:*:*:*:*:*:*", "matchCriteriaId": "4DC5BCBD-001A-4EA1-82E2-F64FA5E0CA0A", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:whr-hp-ampg_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "2ED3F6AB-FCA1-41D5-B951-374B232BFBA5", "versionEndIncluding": "1.49", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:whr-hp-ampg:-:*:*:*:*:*:*:*", "matchCriteriaId": "BE839C52-4F1F-4D29-A44D-C0A2B5A49D9B", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:whr-hp-g_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "80087712-37EB-467E-A9C7-0EC36D4642AF", "versionEndIncluding": "1.49", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:whr-hp-g:-:*:*:*:*:*:*:*", "matchCriteriaId": "94BD1345-CC7E-4A81-ABE0-2ACBD85E989C", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:whr-hp-g54_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "C10DFF93-BB74-47B5-80A5-EAF71B234293", "versionEndIncluding": "1.43", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:whr-hp-g54:-:*:*:*:*:*:*:*", "matchCriteriaId": "C3B0C660-2559-49C8-A66C-94A80A66B569", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:wli-h4-d600_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "63B721EE-3C72-4947-9406-0710C64B8551", "versionEndIncluding": "1.88", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:wli-h4-d600:-:*:*:*:*:*:*:*", "matchCriteriaId": "2DB75E6C-E324-49CE-953C-9909C9525101", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:wli-tx4-ag300n_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "36B84A58-81E2-4A01-AB46-C8B18407EC55", "versionEndIncluding": "1.53", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:wli-tx4-ag300n:-:*:*:*:*:*:*:*", "matchCriteriaId": "5CC38B80-C523-4226-B41F-F8202F4540F3", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:ws024bf_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "F0ED4CBF-0073-4635-BBD4-49C2639676A0", "versionEndIncluding": "1.60", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:ws024bf:-:*:*:*:*:*:*:*", "matchCriteriaId": "07393F98-EC1A-48D6-9E34-829438B2C208", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:ws024bf-nw_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "94DFB418-C48D-41BE-B2E0-FF35F00874A9", "versionEndIncluding": "1.60", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:ws024bf-nw:-:*:*:*:*:*:*:*", "matchCriteriaId": "285AD2FB-8180-4DDC-9A45-181BA86B7720", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:wzr2-g108_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "1044D250-474D-42EE-8784-3F69737D1B92", "versionEndIncluding": "1.33", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:wzr2-g108:-:*:*:*:*:*:*:*", "matchCriteriaId": "CBA5C79A-1B25-4BA6-B076-65966D33EDA6", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:wzr2-g300n_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "BBE89A4F-EECF-49DF-82A4-446FD601A783", "versionEndIncluding": "1.55", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:wzr2-g300n:-:*:*:*:*:*:*:*", "matchCriteriaId": "BDF88F55-8BC2-4BFD-B2BE-757E2617B8F9", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:wzr-450hp-cwt_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "203244A3-B02D-4E16-A2C9-DE7BB015A299", "versionEndIncluding": "2.00", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:wzr-450hp-cwt:-:*:*:*:*:*:*:*", "matchCriteriaId": "348D05E5-E619-4AE9-8A62-DF214899DB17", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:wzr-450hp-ub_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "891A733D-5D0C-4B2C-A8AF-5DDE7D6EC83F", "versionEndIncluding": "2.00", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:wzr-450hp-ub:-:*:*:*:*:*:*:*", "matchCriteriaId": "C5923DA5-CF09-408D-BE0D-A878EFB8BB6B", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:wzr-600dhp2_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "5C50F463-0017-4C5F-95CB-D5927ED52346", "versionEndIncluding": "1.15", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:wzr-600dhp2:-:*:*:*:*:*:*:*", "matchCriteriaId": "9271B665-2267-4C24-92FD-B1CBCB2F0F59", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:wzr-agl300nh_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "98751966-7944-4F9E-94BB-1ED65549AB2D", "versionEndIncluding": "1.55", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:wzr-agl300nh:-:*:*:*:*:*:*:*", "matchCriteriaId": "C83FBBE3-1EA0-47A4-BE67-3DCA1BA1F21F", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:wzr-ampg144nh_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "A43A5F7B-9444-4CF0-8E5C-6A18864B9234", "versionEndIncluding": "1.49", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:wzr-ampg144nh:-:*:*:*:*:*:*:*", "matchCriteriaId": "9177EC3E-C5DB-4215-9D2E-E52072837ED3", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:wzr-ampg300nh_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "74EB2E65-674E-48B1-8497-D3D4A570C6F4", "versionEndIncluding": "1.51", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:wzr-ampg300nh:-:*:*:*:*:*:*:*", "matchCriteriaId": "91447E42-4558-4EE6-9D2E-8AAA6DDEDBB0", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:wzr-d1100h_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "7DE80A3F-C286-46F6-A318-D0D3E0216B5E", "versionEndIncluding": "2.00", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:wzr-d1100h:-:*:*:*:*:*:*:*", "matchCriteriaId": "79BB1A7E-19AD-4897-B20F-03BDA7DCFA8C", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:wzr-g144n_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "986C91B4-05CE-4097-B215-AE9970E90C82", "versionEndIncluding": "1.48", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:wzr-g144n:-:*:*:*:*:*:*:*", "matchCriteriaId": "394AAD9A-5A04-47D3-8D26-5CFB92A663F2", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:wzr-g144nh_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "77C5D266-2E9F-43BE-89EB-EC99DE6A104F", "versionEndIncluding": "1.48", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:wzr-g144nh:-:*:*:*:*:*:*:*", "matchCriteriaId": "6FA880A1-D9BE-467D-9AFC-BB8E57881D10", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:wzr-hp-g300nh_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "60D0E946-E4EB-42DE-96D1-F29E710ECF40", "versionEndIncluding": "1.84", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:wzr-hp-g300nh:-:*:*:*:*:*:*:*", "matchCriteriaId": "CA3BFED6-500A-49C0-BBE1-E9AB5525C143", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:wzr-hp-g301nh_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "FF7AE035-6742-4A55-A134-07E521446822", "versionEndIncluding": "1.84", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:wzr-hp-g301nh:-:*:*:*:*:*:*:*", "matchCriteriaId": "A753B947-1562-4147-965B-6437C4328F44", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:wzr-hp-g450h_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "3C1C1D3B-CF9B-4997-BFFD-602B123AAD65", "versionEndIncluding": "1.90", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:wzr-hp-g450h:-:*:*:*:*:*:*:*", "matchCriteriaId": "72BEF724-6B38-4862-A74D-9FB7F5EB4233", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Hidden functionality vulnerability in multiple Buffalo network devices allows a network-adjacent attacker with an administrative privilege to execute an arbitrary OS command. The affected products/versions are as follows: WCR-300 firmware Ver. 1.87 and earlier, WHR-HP-G300N firmware Ver. 2.00 and earlier, WHR-HP-GN firmware Ver. 1.87 and earlier, WPL-05G300 firmware Ver. 1.88 and earlier, WZR-300HP firmware Ver. 2.00 and earlier, WZR-450HP firmware Ver. 2.00 and earlier, WZR-600DHP firmware Ver. 2.00 and earlier, WZR-900DHP firmware Ver. 1.15 and earlier, WZR-HP-AG300H firmware Ver. 1.76 and earlier, WZR-HP-G302H firmware Ver. 1.86 and earlier, WLAE-AG300N firmware Ver. 1.86 and earlier, FS-600DHP firmware Ver. 3.40 and earlier, FS-G300N firmware Ver. 3.14 and earlier, FS-HP-G300N firmware Ver. 3.33 and earlier, FS-R600DHP firmware Ver. 3.40 and earlier, BHR-4GRV firmware Ver. 2.00 and earlier, DWR-HP-G300NH firmware Ver. 1.84 and earlier, DWR-PG firmware Ver. 1.83 and earlier, HW-450HP-ZWE firmware Ver. 2.00 and earlier, WER-A54G54 firmware Ver. 1.43 and earlier, WER-AG54 firmware Ver. 1.43 and earlier, WER-AM54G54 firmware Ver. 1.43 and earlier, WER-AMG54 firmware Ver. 1.43 and earlier, WHR-300 firmware Ver. 2.00 and earlier, WHR-300HP firmware Ver. 2.00 and earlier, WHR-AM54G54 firmware Ver. 1.43 and earlier, WHR-AMG54 firmware Ver. 1.43 and earlier, WHR-AMPG firmware Ver. 1.52 and earlier, WHR-G firmware Ver. 1.49 and earlier, WHR-G300N firmware Ver. 1.65 and earlier, WHR-G301N firmware Ver. 1.87 and earlier, WHR-G54S firmware Ver. 1.43 and earlier, WHR-G54S-NI firmware Ver. 1.24 and earlier, WHR-HP-AMPG firmware Ver. 1.43 and earlier, WHR-HP-G firmware Ver. 1.49 and earlier, WHR-HP-G54 firmware Ver. 1.43 and earlier, WLI-H4-D600 firmware Ver. 1.88 and earlier, WLI-TX4-AG300N firmware Ver. 1.53 and earlier, WS024BF firmware Ver. 1.60 and earlier, WS024BF-NW firmware Ver. 1.60 and earlier, WZR2-G108 firmware Ver. 1.33 and earlier, WZR2-G300N firmware Ver. 1.55 and earlier, WZR-450HP-CWT firmware Ver. 2.00 and earlier, WZR-450HP-UB firmware Ver. 2.00 and earlier, WZR-600DHP2 firmware Ver. 1.15 and earlier, WZR-AGL300NH firmware Ver. 1.55 and earlier, WZR-AMPG144NH firmware Ver. 1.49 and earlier, WZR-AMPG300NH firmware Ver. 1.51 and earlier, WZR-D1100H firmware Ver. 2.00 and earlier, WZR-G144N firmware Ver. 1.48 and earlier, WZR-G144NH firmware Ver. 1.48 and earlier, WZR-HP-G300NH firmware Ver. 1.84 and earlier, WZR-HP-G301NH firmware Ver. 1.84 and earlier, and WZR-HP-G450H firmware Ver. 1.90 and earlier."}, {"lang": "es", "value": "Una vulnerabilidad de funcionalidad oculta en m\u00faltiples dispositivos de red de Buffalo permite que un atacante adyacente a la red con privilegios administrativos ejecute un comando arbitrario del sistema operativo. Los productos/versiones afectados son los siguientes: WCR-300 firmware Ver. 1.87 y anteriores, versi\u00f3n del firmware WHR-HP-G300N. 2.00 y anteriores, versi\u00f3n del firmware WHR-HP-GN. 1.87 y anteriores, versi\u00f3n del firmware WPL-05G300. 1.88 y anteriores, versi\u00f3n del firmware WZR-300HP. 2.00 y anteriores, versi\u00f3n del firmware WZR-450HP. 2.00 y anteriores, versi\u00f3n del firmware WZR-600DHP. 2.00 y anteriores, versi\u00f3n del firmware WZR-900DHP. 1.15 y anteriores, versi\u00f3n del firmware WZR-HP-AG300H. 1.76 y anteriores, versi\u00f3n del firmware WZR-HP-G302H. 1.86 y anteriores, versi\u00f3n del firmware WLAE-AG300N. 1.86 y anteriores, versi\u00f3n del firmware FS-600DHP. 3.40 y anteriores, versi\u00f3n del firmware FS-G300N. 3.14 y anteriores, versi\u00f3n del firmware FS-HP-G300N. 3.33 y anteriores, versi\u00f3n del firmware FS-R600DHP. 3.40 y anteriores, versi\u00f3n del firmware BHR-4GRV. 2.00 y anteriores, versi\u00f3n del firmware DWR-HP-G300NH. 1.84 y anteriores, versi\u00f3n del firmware DWR-PG. 1.83 y anteriores, versi\u00f3n del firmware HW-450HP-ZWE. 2.00 y anteriores, versi\u00f3n del firmware WER-A54G54. 1.43 y anteriores, versi\u00f3n del firmware WER-AG54. 1.43 y anteriores, versi\u00f3n del firmware WER-AM54G54. 1.43 y anteriores, versi\u00f3n del firmware WER-AMG54. 1.43 y anteriores, versi\u00f3n del firmware WHR-300. 2.00 y anteriores, versi\u00f3n del firmware WHR-300HP. 2.00 y anteriores, versi\u00f3n del firmware WHR-AM54G54. 1.43 y anteriores, versi\u00f3n del firmware WHR-AMG54. 1.43 y anteriores, versi\u00f3n del firmware WHR-AMPG. 1.52 y anteriores, versi\u00f3n del firmware WHR-G. 1.49 y anteriores, versi\u00f3n del firmware WHR-G300N. 1.65 y anteriores, versi\u00f3n del firmware WHR-G301N. 1.87 y anteriores, versi\u00f3n del firmware WHR-G54S. 1.43 y anteriores, versi\u00f3n del firmware WHR-G54S-NI. 1.24 y anteriores, versi\u00f3n del firmware WHR-HP-AMPG. 1.43 y anteriores, versi\u00f3n del firmware WHR-HP-G. 1.49 y anteriores, versi\u00f3n del firmware WHR-HP-G54. 1.43 y anteriores, versi\u00f3n del firmware WLI-H4-D600. 1.88 y anteriores, versi\u00f3n del firmware WLI-TX4-AG300N. 1.53 y anteriores, versi\u00f3n del firmware WS024BF. 1.60 y anteriores, versi\u00f3n del firmware WS024BF-NW. 1.60 y anteriores, versi\u00f3n del firmware WZR2-G108. 1.33 y anteriores, versi\u00f3n del firmware WZR2-G300N. 1.55 y anteriores, versi\u00f3n del firmware WZR-450HP-CWT. 2.00 y anteriores, versi\u00f3n del firmware WZR-450HP-UB. 2.00 y anteriores, versi\u00f3n del firmware WZR-600DHP2. 1.15 y anteriores, versi\u00f3n del firmware WZR-AGL300NH. 1.55 y anteriores, versi\u00f3n del firmware WZR-AMPG144NH. 1.49 y anteriores, versi\u00f3n del firmware WZR-AMPG300NH. 1.51 y anteriores, versi\u00f3n del firmware WZR-D1100H. 2.00 y anteriores, versi\u00f3n del firmware WZR-G144N. 1.48 y anteriores, versi\u00f3n del firmware WZR-G144NH. 1.48 y anteriores, versi\u00f3n del firmware WZR-HP-G300NH. 1.84 y anteriores, versi\u00f3n del firmware WZR-HP-G301NH. 1.84 y anteriores, y la versi\u00f3n del firmware WZR-HP-G450H. 1,90 y anteriores."}], "id": "CVE-2022-39044", "lastModified": "2025-04-23T16:15:22.027", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "HIGH", "baseScore": 6.8, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 0.9, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "HIGH", "baseScore": 6.8, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 0.9, "impactScore": 5.9, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2022-12-07T10:15:11.023", "references": [{"source": "vultures@jpcert.or.jp", "tags": ["Third Party Advisory"], "url": "https://jvn.jp/en/vu/JVNVU92805279/index.html"}, {"source": "vultures@jpcert.or.jp", "tags": ["Patch", "Vendor Advisory"], "url": "https://www.buffalo.jp/news/detail/20221003-01.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://jvn.jp/en/vu/JVNVU92805279/index.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "https://www.buffalo.jp/news/detail/20221003-01.html"}], "sourceIdentifier": "vultures@jpcert.or.jp", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}

{}