CVE-2017-10811

Buffalo WCR-1166DS devices with firmware 1.30 and earlier allow an attacker to execute arbitrary OS commands via unspecified vectors.
References
Link Resource
https://jvn.jp/en/jp/JVN05340005/index.html Third Party Advisory VDB Entry
http://buffalo.jp/support_s/s20170804_1.html Vendor Advisory
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:buffalo:wcr-1166ds_firmware:1.30:*:*:*:*:*:*:*
cpe:2.3:h:buffalo:wcr-1166ds:-:*:*:*:*:*:*:*

Information

Published : 2017-08-18 06:29

Updated : 2017-08-25 05:27


NVD link : CVE-2017-10811

Mitre link : CVE-2017-10811


JSON object : View

CWE
CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

Advertisement

dedicated server usa

Products Affected

buffalo

  • wcr-1166ds_firmware
  • wcr-1166ds