9.8критическая
CVE-2026-33280
Описание
Hidden functionality issue exists in BUFFALO Wi-Fi router products, which may allow an attacker to gain access to the product’s debugging functionality, resulting in the execution of arbitrary OS commands.
Затрагиваемое ПО
Buffalo Wcr-1166dhpl firmwareBuffalo Wcr-1166dhplBuffalo Wsr3600be4-kh firmwareBuffalo Wsr3600be4-khBuffalo Wsr3600be4p firmwareBuffalo Wsr3600be4pBuffalo Wxr-1750dhp firmwareBuffalo Wxr-1750dhpBuffalo Wxr-1750dhp2 firmwareBuffalo Wxr-1750dhp2Buffalo Wxr18000be10p firmwareBuffalo Wxr18000be10pBuffalo Wxr-1900dhp firmwareBuffalo Wxr-1900dhpBuffalo Wxr-1900dhp2 firmwareBuffalo Wxr-1900dhp2Buffalo Wxr-1900dhp3 firmwareBuffalo Wxr-1900dhp3Buffalo Wxr-5950ax12 firmwareBuffalo Wxr-5950ax12Buffalo Wxr-6000ax12b firmwareBuffalo Wxr-6000ax12bBuffalo Wxr-6000ax12p firmwareBuffalo Wxr-6000ax12pBuffalo Wxr-6000ax12s firmware
CVSS
| Балл | 9.8 — критическая |
| Вектор | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Источники
https://jvn.jp/en/jp/JVN83788689/https://www.buffalo.jp/news/detail/20260323-01.html