Known Vulnerabilities for products from Buffalo

Listed below are 20 of the newest known vulnerabilities associated with the vendor "Buffalo".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Known Vulnerabilities

CVE	Shortened Description	Severity	Publish Date	Last Modified
CVE-2026-33366 json		Not Provided	2026-03-27	2026-03-27
CVE-2026-33280 json	Hidden functionality issue exists in BUFFALO Wi-Fi router products, which may allow an attacker to gain access to the product...	Not Provided	2026-03-27	2026-03-31
CVE-2026-32678 json	Authentication bypass issue exists in BUFFALO Wi-Fi router products, which may allow an attacker to alter critical configurat...	Not Provided	2026-03-27	2026-03-31
CVE-2026-32669 json	Code injection vulnerability exists in BUFFALO Wi-Fi router products. If this vulnerability is exploited, an arbitrary code m...	Not Provided	2026-03-27	2026-03-31
CVE-2026-27650 json	OS Command Injection vulnerability exists in BUFFALO Wi-Fi router products. If this vulnerability is exploited, an arbitrary ...	Not Provided	2026-03-27	2026-03-31
CVE-2025-66954 json		Not Provided	2026-04-20	2026-04-20
CVE-2023-51363 json		6.5 - MEDIUM	2023-12-26	2024-01-03
CVE-2023-46711 json	RESERVED This candidate has been reserved by an organization or individual that will use it when announcing a new secur...	4.6 - MEDIUM	2023-12-26	2024-01-04
CVE-2023-46681 json	RESERVED This candidate has been reserved by an organization or individual that will use it when announcing a new secur...	7.8 - HIGH	2023-12-26	2024-01-04
CVE-2023-45741 json	RESERVED This candidate has been reserved by an organization or individual that will use it when announcing a new secur...	6.8 - MEDIUM	2023-12-26	2024-01-04
CVE-2023-39620 json	An Issue in Buffalo America, Inc. TeraStation NAS TS5410R v.5.00 thru v.0.07 allows a remote attacker to obtain sensitive inf...	7.5 - HIGH	2023-09-08	2023-09-12
CVE-2023-26588 json	Use of hard-coded credentials vulnerability in Buffalo network devices allows an attacker to access the debug function of the...	7.5 - HIGH	2023-04-11	2023-04-18
CVE-2023-24544 json	Improper access control vulnerability in Buffalo network devices allows a network-adjacent attacker to obtain specific files ...	8.1 - HIGH	2023-04-11	2023-04-18
CVE-2023-24464 json	Stored-cross-site scripting vulnerability in Buffalo network devices allows an attacker with access to the web management con...	5.4 - MEDIUM	2023-04-11	2023-04-18
CVE-2022-43486 json	Hidden functionality vulnerability in Buffalo network devices WSR-3200AX4S firmware Ver. 1.26 and earlier, WSR-3200AX4B firmw...	6.8 - MEDIUM	2022-12-19	2022-12-27
CVE-2022-43466 json	Buffalo network devices WSR-3200AX4S firmware Ver. 1.26 and earlier, WSR-3200AX4B firmware Ver. 1.25, WSR-2533DHP2 firmware V...	6.8 - MEDIUM	2022-12-19	2022-12-27
CVE-2022-43443 json	Buffalo network devices WSR-3200AX4S firmware Ver. 1.26 and earlier, WSR-3200AX4B firmware Ver. 1.25, WSR-2533DHP firmware Ve...	8.8 - HIGH	2022-12-19	2022-12-27
CVE-2022-40966 json	Authentication bypass vulnerability in multiple Buffalo network devices allows a network-adjacent attacker to bypass authenti...	8.8 - HIGH	2022-12-07	2022-12-13
CVE-2022-39044 json	Hidden functionality vulnerability in multiple Buffalo network devices allows a network-adjacent attacker with an administrat...	6.8 - MEDIUM	2022-12-07	2022-12-13
CVE-2022-34840 json	Use of hard-coded credentials vulnerability in multiple Buffalo network devices allows a network-adjacent attacker to alter?c...	6.5 - MEDIUM	2022-12-07	2022-12-13

Results limited to 20 most recent vulnerabilities

Known software with vulnerabilities from Buffalo

Type	Vendor	Product	Version
Application	Buffalo	Open Xdmod	7.5.0