CVE-2016-4816

BUFFALO WZR-600DHP3 devices with firmware 2.16 and earlier and WZR-S600DHP devices allow remote attackers to discover credentials and other sensitive information via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.5 MEDIUM
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
jpcertCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 58%
VendorProductVersion
buffalowzr-600dhp3_firmware
𝑥
≤ 2.16
buffalohw-450hp-zwe_firmware
𝑥
≤ 1.91
buffalowzr-hp-g450h_firmware
𝑥
≤ 1.87
buffalowzr-450hp_firmware
𝑥
≤ 1.97
buffalowzr-900dhp2_firmware
𝑥
≤ 2.16
buffalowcr-300_firmware
𝑥
≤ 1.86
buffalowzr-450hp-cwt_firmware
𝑥
≤ 1.92
buffalowzr-hp-g301nh_firmware
𝑥
≤ 1.81
buffalowxr-1750dhp_firmware
𝑥
≤ 2.42
buffalowzr-600dhp_firmware
1.97
buffalowzr-1750dhp_firmware
𝑥
≤ 2.28
buffalowzr-s1750dhp_firmware
𝑥
≤ 2.28
buffalowhr-300_firmware
𝑥
≤ 1.96
buffalowzr-s600dhp_firmware
𝑥
≤ 2.16
buffalowzr-hp-g302h_firmware
𝑥
≤ 1.83
buffalowapm-ag300n_firmware
𝑥
≤ 2.62
buffalowzr-hp-ag300h_firmware
𝑥
≤ 1.73
buffalowzr-d1100h_firmware
𝑥
≤ 1.96
buffalowpl-05g300_firmware
𝑥
≤ 1.86
buffalowzr-s900dhp_firmware
𝑥
≤ 2.16
buffalodwr-hp-g300nh_firmware
𝑥
≤ 1.81
buffalowhr-300hp_firmware
𝑥
≤ 1.96
buffalowzr-1750dhp2_firmware
𝑥
≤ 2.28
buffalowzr-1166dhp2_firmware
𝑥
≤ 2.13
buffalowzr-300hp_firmware
𝑥
≤ 1.96
buffalowapm-apg300n_firmware
𝑥
≤ 2.62
buffalowzr-900dhp2_firmware
𝑥
≤ 1.13
buffalowxr-1900dhp_firmware
𝑥
≤ 2.34
buffalowzr-900dhp_firmware
𝑥
≤ 1.11
buffalowzr-1166dhp_firmware
𝑥
≤ 2.13
buffalowhr-hp-g300n_firmware
𝑥
≤ 1.96
buffalobhr-4grv_firmware
𝑥
≤ 1.96
buffalowzr-450hp-ub_firmware
𝑥
≤ 1.96
buffalowzr-hp-g300nh_firmware
𝑥
≤ 1.81
buffalofs-600dhp_firmware
𝑥
≤ 3.34
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://buffalo.jp/support_s/s20160527a.html
http://jvn.jp/en/jp/JVN75813272/index.html
http://jvndb.jvn.jp/jvndb/JVNDB-2016-000087
http://buffalo.jp/support_s/s20160527a.html
http://jvn.jp/en/jp/JVN75813272/index.html
http://jvndb.jvn.jp/jvndb/JVNDB-2016-000087