Buffalo network devices 安全漏洞
CVE编号
CVE-2022-40966利用情况
暂无补丁情况
N/A披露时间
2022-12-07漏洞描述
Buffalo network devices是日本巴比禄(Buffalo)公司的一系列网络设备。Buffalo network devices 存在安全漏洞,该漏洞源于允许网络相邻的攻击者绕过身份验证并访问设备,以下产品和版本受到影响:WCR-300 固件版本1.87 及之前版本,WHR-HP-G300N 固件版本2.00 及之前版本,WHR-HP-GN 固件版本1.87 及之前版本,WPL-05G300 固件版本1.88 及之前版本,WRM-D2133HP 固件版本2.85 及之前版本,WRM-D2133HS 固件版本2.96 及之前版本,WTR-M2133HP 固件版本2.85 及之前版本,WTR-M2133HS 固件版本2.96 及之前版本,WXR-1900DHP 固件版本2.50 及之前版本,WXR-1900DHP2 固件版本2.59 及之前版本,WXR-1900DHP3 固件版本2.63 及之前版本,WXR-5950AX12 固件版本3.40 及之前版本,WXR-6000AX12B 固件版本3.40 及之前版本,WXR-6000AX12S 固件版本3.40 及之前版本,WZR-300HP 固件版本2.00 及之前版本,WZR-450HP 固件版本2.00 及之前版本,WZR-600DHP 固件版本2.00 及之前版本,WZR-900DHP 固件版本1.15 及之前版本,WZR-1750DHP2 固件版本2.31 及之前版本,WZR-HP-AG300H 固件版本1.76 及之前版本,WZR-HP-G302H 固件版本1.86 及之前版本,WEM-1266 固件版本2.85 及之前版本,WEM-1266WP 固件版本2.85 及之前版本,WLAE-AG300N 固件版本1.86 及之前版本,FS-600DHP 固件版本3.40 及之前版本,FS-G300N 固件版本3.14 及之前版本,FS-HP-G300N 固件版本3.33 及之前版本等。解决建议
建议您更新当前系统或软件至最新版,完成漏洞的修复。
参考链接 |
|
|---|---|
| https://jvn.jp/en/vu/JVNVU92805279/index.html | |
| https://www.buffalo.jp/news/detail/20221003-01.html |
受影响软件情况
| # | 类型 | 厂商 | 产品 | 版本 | 影响面 | ||||
| 1 | |||||||||
|---|---|---|---|---|---|---|---|---|---|
| 运行在以下环境 | |||||||||
| 系统 | buffalo | bhr-4grv_firmware | * | Up to (including) 2.00 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | dwr-hp-g300nh_firmware | * | Up to (including) 1.84 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | dwr-pg_firmware | * | Up to (including) 1.83 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | fs-600dhp_firmware | * | Up to (including) 3.40 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | fs-g300n_firmware | * | Up to (including) 3.14 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | fs-hp-g300n_firmware | * | Up to (including) 3.33 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | fs-r600dhp_firmware | * | Up to (including) 3.40 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | hw-450hp-zwe_firmware | * | Up to (including) 2.00 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wcr-300_firmware | * | Up to (including) 1.87 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wem-1266wp_firmware | * | Up to (including) 2.85 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wem-1266_firmware | * | Up to (including) 2.85 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wer-a54g54_firmware | * | Up to (including) 1.43 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wer-ag54_firmware | * | Up to (including) 1.43 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wer-am54g54_firmware | * | Up to (including) 1.43 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wer-amg54_firmware | * | Up to (including) 1.43 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | whr-300hp_firmware | * | Up to (including) 2.00 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | whr-300_firmware | * | Up to (including) 2.00 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | whr-am54g54_firmware | * | Up to (including) 1.43 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | whr-amg54_firmware | * | Up to (including) 1.43 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | whr-ampg_firmware | * | Up to (including) 1.52 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | whr-g300n_firmware | * | Up to (including) 1.65 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | whr-g301n_firmware | * | Up to (including) 1.87 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | whr-g54s-ni_firmware | * | Up to (including) 1.24 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | whr-g54s_firmware | * | Up to (including) 1.43 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | whr-g_firmware | * | Up to (including) 1.49 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | whr-hp-ampg_firmware | * | Up to (including) 1.43 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | whr-hp-g300n_firmware | * | Up to (including) 2.00 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | whr-hp-g54_firmware | * | Up to (including) 1.43 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | whr-hp-gn_firmware | * | Up to (including) 1.87 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | whr-hp-g_firmware | * | Up to (including) 1.49 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wlae-ag300n_firmware | * | Up to (including) 1.86 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wli-h4-d600_firmware | * | Up to (including) 1.88 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wpl-05g300_firmware | * | Up to (including) 1.88 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wrm-d2133hp_firmware | * | Up to (including) 2.85 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wrm-d2133hs_firmware | * | Up to (including) 2.96 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | ws024bf-nw_firmware | * | Up to (including) 1.60 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | ws024bf_firmware | * | Up to (including) 1.60 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wtr-m2133hp_firmware | * | Up to (including) 2.85 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wtr-m2133hs_firmware | * | Up to (including) 2.96 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wxr-1750dhp2_firmware | * | Up to (including) 2.60 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wxr-1750dhp_firmware | * | Up to (including) 2.60 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wxr-1900dhp2_firmware | * | Up to (including) 2.59 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wxr-1900dhp3_firmware | * | Up to (including) 2.63 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wxr-1900dhp_firmware | * | Up to (including) 2.50 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wxr-5950ax12_firmware | * | Up to (including) 3.40 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wxr-6000ax12b_firmware | * | Up to (including) 3.40 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wxr-6000ax12s_firmware | * | Up to (including) 3.40 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wzr-1166dhp2_firmware | * | Up to (including) 2.18 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wzr-1166dhp_firmware | * | Up to (including) 2.18 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wzr-1750dhp2_firmware | * | Up to (including) 2.31 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wzr-1750dhp_firmware | * | Up to (including) 2.30 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wzr-300hp_firmware | * | Up to (including) 2.00 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wzr-450hp-cwt_firmware | * | Up to (including) 2.00 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wzr-450hp-ub_firmware | * | Up to (including) 2.00 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wzr-450hp_firmware | * | Up to (including) 2.00 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wzr-600dhp2_firmware | * | Up to (including) 1.15 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wzr-600dhp3_firmware | * | Up to (including) 2.19 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wzr-600dhp_firmware | * | Up to (including) 2.00 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wzr-900dhp2_firmware | * | Up to (including) 2.19 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wzr-900dhp_firmware | * | Up to (including) 1.15 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wzr-agl300nh_firmware | * | Up to (including) 1.55 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wzr-ampg144nh_firmware | * | Up to (including) 1.49 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wzr-ampg300nh_firmware | * | Up to (including) 1.51 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wzr-d1100h_firmware | * | Up to (including) 2.00 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wzr-g144nh_firmware | * | Up to (including) 1.48 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wzr-g144n_firmware | * | Up to (including) 1.48 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wzr-hp-ag300h_firmware | * | Up to (including) 1.76 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wzr-hp-g300nh_firmware | * | Up to (including) 1.84 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wzr-hp-g301nh_firmware | * | Up to (including) 1.84 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wzr-hp-g302h_firmware | * | Up to (including) 1.86 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wzr-hp-g450h_firmware | * | Up to (including) 1.90 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wzr-s1750dhp_firmware | * | Up to (including) 2.32 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wzr-s600dhp_firmware | * | Up to (including) 2.19 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wzr-s900dhp_firmware | * | Up to (including) 2.19 | |||||
| 运行在以下环境 | |||||||||
| 系统 | buffalo | wzr2-g300n_firmware | * | Up to (including) 1.55 | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | bhr-4grv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | dwr-hp-g300nh | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | dwr-pg | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | fs-600dhp | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | fs-g300n | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | fs-hp-g300n | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | fs-r600dhp | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | hw-450hp-zwe | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wcr-300 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wem-1266 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wem-1266wp | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wer-a54g54 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wer-ag54 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wer-am54g54 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wer-amg54 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | whr-300 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | whr-300hp | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | whr-am54g54 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | whr-amg54 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | whr-ampg | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | whr-g | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | whr-g300n | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | whr-g301n | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | whr-g54s | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | whr-g54s-ni | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | whr-hp-ampg | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | whr-hp-g | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | whr-hp-g300n | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | whr-hp-g54 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | whr-hp-gn | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wlae-ag300n | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wli-h4-d600 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wpl-05g300 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wrm-d2133hp | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wrm-d2133hs | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | ws024bf | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | ws024bf-nw | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wtr-m2133hp | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wtr-m2133hs | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wxr-1750dhp | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wxr-1750dhp2 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wxr-1900dhp | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wxr-1900dhp2 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wxr-1900dhp3 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wxr-5950ax12 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wxr-6000ax12b | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wxr-6000ax12s | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wzr-1166dhp | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wzr-1166dhp2 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wzr-1750dhp | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wzr-1750dhp2 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wzr-300hp | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wzr-450hp | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wzr-450hp-cwt | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wzr-450hp-ub | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wzr-600dhp | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wzr-600dhp2 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wzr-600dhp3 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wzr-900dhp | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wzr-900dhp2 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wzr-agl300nh | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wzr-ampg144nh | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wzr-ampg300nh | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wzr-d1100h | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wzr-g144n | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wzr-g144nh | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wzr-hp-ag300h | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wzr-hp-g300nh | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wzr-hp-g301nh | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wzr-hp-g302h | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wzr-hp-g450h | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wzr-s1750dhp | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wzr-s600dhp | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wzr-s900dhp | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | buffalo | wzr2-g300n | - | - | |||||
- 攻击路径 相邻
- 攻击复杂度 低
- 权限要求 无
- 影响范围 未更改
- 用户交互 无
- 可用性 高
- 保密性 高
- 完整性 高
| CWE-ID | 漏洞类型 |
| CWE-287 | 认证机制不恰当 |
Exp相关链接
版权声明
本站原创文章转载请注明文章出处及链接,谢谢合作!
评论