← Back

CVE-2022-39044

nvd nist
Published: Dec 7, 2022Modified: Apr 23, 2025

JSON object

Loading...
6.8
Vector
CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Exploitability: 0.9 / Impact: 5.9
Source: NVD

Description

Hidden functionality vulnerability in multiple Buffalo network devices allows a network-adjacent attacker with an administrative privilege to execute an arbitrary OS command. The affected products/versions are as follows: WCR-300 firmware Ver. 1.87 and earlier, WHR-HP-G300N firmware Ver. 2.00 and earlier, WHR-HP-GN firmware Ver. 1.87 and earlier, WPL-05G300 firmware Ver. 1.88 and earlier, WZR-300HP firmware Ver. 2.00 and earlier, WZR-450HP firmware Ver. 2.00 and earlier, WZR-600DHP firmware Ver. 2.00 and earlier, WZR-900DHP firmware Ver. 1.15 and earlier, WZR-HP-AG300H firmware Ver. 1.76 and earlier, WZR-HP-G302H firmware Ver. 1.86 and earlier, WLAE-AG300N firmware Ver. 1.86 and earlier, FS-600DHP firmware Ver. 3.40 and earlier, FS-G300N firmware Ver. 3.14 and earlier, FS-HP-G300N firmware Ver. 3.33 and earlier, FS-R600DHP firmware Ver. 3.40 and earlier, BHR-4GRV firmware Ver. 2.00 and earlier, DWR-HP-G300NH firmware Ver. 1.84 and earlier, DWR-PG firmware Ver. 1.83 and earlier, HW-450HP-ZWE firmware Ver. 2.00 and earlier, WER-A54G54 firmware Ver. 1.43 and earlier, WER-AG54 firmware Ver. 1.43 and earlier, WER-AM54G54 firmware Ver. 1.43 and earlier, WER-AMG54 firmware Ver. 1.43 and earlier, WHR-300 firmware Ver. 2.00 and earlier, WHR-300HP firmware Ver. 2.00 and earlier, WHR-AM54G54 firmware Ver. 1.43 and earlier, WHR-AMG54 firmware Ver. 1.43 and earlier, WHR-AMPG firmware Ver. 1.52 and earlier, WHR-G firmware Ver. 1.49 and earlier, WHR-G300N firmware Ver. 1.65 and earlier, WHR-G301N firmware Ver. 1.87 and earlier, WHR-G54S firmware Ver. 1.43 and earlier, WHR-G54S-NI firmware Ver. 1.24 and earlier, WHR-HP-AMPG firmware Ver. 1.43 and earlier, WHR-HP-G firmware Ver. 1.49 and earlier, WHR-HP-G54 firmware Ver. 1.43 and earlier, WLI-H4-D600 firmware Ver. 1.88 and earlier, WLI-TX4-AG300N firmware Ver. 1.53 and earlier, WS024BF firmware Ver. 1.60 and earlier, WS024BF-NW firmware Ver. 1.60 and earlier, WZR2-G108 firmware Ver. 1.33 and earlier, WZR2-G300N firmware Ver. 1.55 and earlier, WZR-450HP-CWT firmware Ver. 2.00 and earlier, WZR-450HP-UB firmware Ver. 2.00 and earlier, WZR-600DHP2 firmware Ver. 1.15 and earlier, WZR-AGL300NH firmware Ver. 1.55 and earlier, WZR-AMPG144NH firmware Ver. 1.49 and earlier, WZR-AMPG300NH firmware Ver. 1.51 and earlier, WZR-D1100H firmware Ver. 2.00 and earlier, WZR-G144N firmware Ver. 1.48 and earlier, WZR-G144NH firmware Ver. 1.48 and earlier, WZR-HP-G300NH firmware Ver. 1.84 and earlier, WZR-HP-G301NH firmware Ver. 1.84 and earlier, and WZR-HP-G450H firmware Ver. 1.90 and earlier.

Affected (54)

Products: Buffalo: Wcr 300 Firmware, Whr Hp G300n Firmware, Whr Hp Gn Firmware, Wpl 05g300 Firmware, Wzr 300hp Firmware, Wzr 450hp Firmware, Wzr 600dhp Firmware, Wzr 900dhp Firmware, Wzr Hp Ag300h Firmware, Wzr Hp G302h Firmware, Wlae Ag300n Firmware, Fs 600dhp Firmware, Fs G300n Firmware, Fs Hp G300n Firmware, Fs R600dhp Firmware, Bhr 4grv Firmware, Dwr Hp G300nh Firmware, Dwr Pg Firmware, Hw 450hp Zwe Firmware, Wer A54g54 Firmware, Wer Ag54 Firmware, Wer Am54g54 Firmware, Wer Amg54 Firmware, Whr 300 Firmware, Whr 300hp Firmware, Whr Am54g54 Firmware, Whr Amg54 Firmware, Whr Ampg Firmware, Whr G Firmware, Whr G300n Firmware, Whr G301n Firmware, Whr G54s Firmware, Whr G54s Ni Firmware, Whr Hp Ampg Firmware, Whr Hp G Firmware, Whr Hp G54 Firmware, Wli H4 D600 Firmware, Wli Tx4 Ag300n Firmware, Ws024bf Firmware, Ws024bf Nw Firmware, Wzr2 G108 Firmware, Wzr2 G300n Firmware, Wzr 450hp Cwt Firmware, Wzr 450hp Ub Firmware, Wzr 600dhp2 Firmware, Wzr Agl300nh Firmware, Wzr Ampg144nh Firmware, Wzr Ampg300nh Firmware, Wzr D1100h Firmware, Wzr G144n Firmware, Wzr G144nh Firmware, Wzr Hp G300nh Firmware, Wzr Hp G301nh Firmware, Wzr Hp G450h Firmware
Buffalo
54 products
Wcr 300 Firmware
Whr Hp G300n Firmware
Whr Hp Gn Firmware
Wpl 05g300 Firmware
Wzr 300hp Firmware
Wzr 450hp Firmware
Wzr 600dhp Firmware
Wzr 900dhp Firmware
Wzr Hp Ag300h Firmware
Wzr Hp G302h Firmware
Wlae Ag300n Firmware
Fs 600dhp Firmware
Fs G300n Firmware
Fs Hp G300n Firmware
Fs R600dhp Firmware
Bhr 4grv Firmware
Dwr Hp G300nh Firmware
Dwr Pg Firmware
Hw 450hp Zwe Firmware
Wer A54g54 Firmware
Wer Ag54 Firmware
Wer Am54g54 Firmware
Wer Amg54 Firmware
Whr 300 Firmware
Whr 300hp Firmware
Whr Am54g54 Firmware
Whr Amg54 Firmware
Whr Ampg Firmware
Whr G Firmware
Whr G300n Firmware
Whr G301n Firmware
Whr G54s Firmware
Whr G54s Ni Firmware
Whr Hp Ampg Firmware
Whr Hp G Firmware
Whr Hp G54 Firmware
Wli H4 D600 Firmware
Wli Tx4 Ag300n Firmware
Ws024bf Firmware
Ws024bf Nw Firmware
Wzr2 G108 Firmware
Wzr2 G300n Firmware
Wzr 450hp Cwt Firmware
Wzr 450hp Ub Firmware
Wzr 600dhp2 Firmware
Wzr Agl300nh Firmware
Wzr Ampg144nh Firmware
Wzr Ampg300nh Firmware
Wzr D1100h Firmware
Wzr G144n Firmware
Wzr G144nh Firmware
Wzr Hp G300nh Firmware
Wzr Hp G301nh Firmware
Wzr Hp G450h Firmware
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Wcr 300 Firmware
Up to 1.87
Running on/withPlatform Versions
Buffalo
Wcr 300
All versions
Configuration B
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Whr Hp G300n Firmware
Up to 2.00
Running on/withPlatform Versions
Buffalo
Whr Hp G300n
All versions
Configuration C
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Whr Hp Gn Firmware
Up to 1.87
Running on/withPlatform Versions
Buffalo
Whr Hp Gn
All versions
Configuration D
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Wpl 05g300 Firmware
Up to 1.88
Running on/withPlatform Versions
Buffalo
Wpl 05g300
All versions
Configuration E
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Wzr 300hp Firmware
Up to 2.00
Running on/withPlatform Versions
Buffalo
Wzr 300hp
All versions
Configuration F
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Wzr 450hp Firmware
Up to 2.00
Running on/withPlatform Versions
Buffalo
Wzr 450hp
All versions
Configuration G
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Wzr 600dhp Firmware
Up to 2.00
Running on/withPlatform Versions
Buffalo
Wzr 600dhp
All versions
Configuration H
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Wzr 900dhp Firmware
Up to 1.15
Running on/withPlatform Versions
Buffalo
Wzr 900dhp
All versions
Configuration I
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Wzr Hp Ag300h Firmware
Up to 1.76
Running on/withPlatform Versions
Buffalo
Wzr Hp Ag300h
All versions
Configuration J
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Wzr Hp G302h Firmware
Up to 1.86
Running on/withPlatform Versions
Buffalo
Wzr Hp G302h
All versions
Configuration K
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Wlae Ag300n Firmware
Up to 1.86
Running on/withPlatform Versions
Buffalo
Wlae Ag300n
All versions
Configuration L
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Fs 600dhp Firmware
Up to 3.40
Running on/withPlatform Versions
Buffalo
Fs 600dhp
All versions
Configuration M
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Fs G300n Firmware
Up to 3.14
Running on/withPlatform Versions
Buffalo
Fs G300n
All versions
Configuration N
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Fs Hp G300n Firmware
Up to 3.33
Running on/withPlatform Versions
Buffalo
Fs Hp G300n
All versions
Configuration O
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Fs R600dhp Firmware
Up to 3.40
Running on/withPlatform Versions
Buffalo
Fs R600dhp
All versions
Configuration P
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Bhr 4grv Firmware
Up to 2.00
Running on/withPlatform Versions
Buffalo
Bhr 4grv
All versions
Configuration Q
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Dwr Hp G300nh Firmware
Up to 1.84
Running on/withPlatform Versions
Buffalo
Dwr Hp G300nh
All versions
Configuration R
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Dwr Pg Firmware
Up to 1.83
Running on/withPlatform Versions
Buffalo
Dwr Pg
All versions
Configuration S
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Hw 450hp Zwe Firmware
Up to 2.00
Running on/withPlatform Versions
Buffalo
Hw 450hp Zwe
All versions
Configuration T
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Wer A54g54 Firmware
Up to 1.43
Running on/withPlatform Versions
Buffalo
Wer A54g54
All versions
Configuration U
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Wer Ag54 Firmware
Up to 1.43
Running on/withPlatform Versions
Buffalo
Wer Ag54
All versions
Configuration V
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Wer Am54g54 Firmware
Up to 1.43
Running on/withPlatform Versions
Buffalo
Wer Am54g54
All versions
Configuration W
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Wer Amg54 Firmware
Up to 1.43
Running on/withPlatform Versions
Buffalo
Wer Amg54
All versions
Configuration X
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Whr 300 Firmware
Up to 2.00
Running on/withPlatform Versions
Buffalo
Whr 300
All versions
Configuration Y
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Whr 300hp Firmware
Up to 2.00
Running on/withPlatform Versions
Buffalo
Whr 300hp
All versions
Configuration Z
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Whr Am54g54 Firmware
Up to 1.43
Running on/withPlatform Versions
Buffalo
Whr Am54g54
All versions
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Whr Amg54 Firmware
Up to 1.43
Running on/withPlatform Versions
Buffalo
Whr Amg54
All versions
Configuration B
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Whr Ampg Firmware
Up to 1.52
Running on/withPlatform Versions
Buffalo
Whr Ampg
All versions
Configuration C
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Whr G Firmware
Up to 1.49
Running on/withPlatform Versions
Buffalo
Whr G
All versions
Configuration D
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Whr G300n Firmware
Up to 1.65
Running on/withPlatform Versions
Buffalo
Whr G300n
All versions
Configuration E
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Whr G301n Firmware
Up to 1.87
Running on/withPlatform Versions
Buffalo
Whr G301n
All versions
Configuration F
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Whr G54s Firmware
Up to 1.43
Running on/withPlatform Versions
Buffalo
Whr G54s
All versions
Configuration G
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Whr G54s Ni Firmware
Up to 1.24
Running on/withPlatform Versions
Buffalo
Whr G54s Ni
All versions
Configuration H
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Whr Hp Ampg Firmware
Up to 1.49
Running on/withPlatform Versions
Buffalo
Whr Hp Ampg
All versions
Configuration I
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Whr Hp G Firmware
Up to 1.49
Running on/withPlatform Versions
Buffalo
Whr Hp G
All versions
Configuration J
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Whr Hp G54 Firmware
Up to 1.43
Running on/withPlatform Versions
Buffalo
Whr Hp G54
All versions
Configuration K
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Wli H4 D600 Firmware
Up to 1.88
Running on/withPlatform Versions
Buffalo
Wli H4 D600
All versions
Configuration L
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Wli Tx4 Ag300n Firmware
Up to 1.53
Running on/withPlatform Versions
Buffalo
Wli Tx4 Ag300n
All versions
Configuration M
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Ws024bf Firmware
Up to 1.60
Running on/withPlatform Versions
Buffalo
Ws024bf
All versions
Configuration N
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Ws024bf Nw Firmware
Up to 1.60
Running on/withPlatform Versions
Buffalo
Ws024bf Nw
All versions
Configuration O
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Wzr2 G108 Firmware
Up to 1.33
Running on/withPlatform Versions
Buffalo
Wzr2 G108
All versions
Configuration P
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Wzr2 G300n Firmware
Up to 1.55
Running on/withPlatform Versions
Buffalo
Wzr2 G300n
All versions
Configuration Q
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Wzr 450hp Cwt Firmware
Up to 2.00
Running on/withPlatform Versions
Buffalo
Wzr 450hp Cwt
All versions
Configuration R
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Wzr 450hp Ub Firmware
Up to 2.00
Running on/withPlatform Versions
Buffalo
Wzr 450hp Ub
All versions
Configuration S
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Wzr 600dhp2 Firmware
Up to 1.15
Running on/withPlatform Versions
Buffalo
Wzr 600dhp2
All versions
Configuration T
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Wzr Agl300nh Firmware
Up to 1.55
Running on/withPlatform Versions
Buffalo
Wzr Agl300nh
All versions
Configuration U
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Wzr Ampg144nh Firmware
Up to 1.49
Running on/withPlatform Versions
Buffalo
Wzr Ampg144nh
All versions
Configuration V
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Wzr Ampg300nh Firmware
Up to 1.51
Running on/withPlatform Versions
Buffalo
Wzr Ampg300nh
All versions
Configuration W
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Wzr D1100h Firmware
Up to 2.00
Running on/withPlatform Versions
Buffalo
Wzr D1100h
All versions
Configuration X
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Wzr G144n Firmware
Up to 1.48
Running on/withPlatform Versions
Buffalo
Wzr G144n
All versions
Configuration Y
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Wzr G144nh Firmware
Up to 1.48
Running on/withPlatform Versions
Buffalo
Wzr G144nh
All versions
Configuration Z
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Wzr Hp G300nh Firmware
Up to 1.84
Running on/withPlatform Versions
Buffalo
Wzr Hp G300nh
All versions
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Wzr Hp G301nh Firmware
Up to 1.84
Running on/withPlatform Versions
Buffalo
Wzr Hp G301nh
All versions
Configuration B
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Wzr Hp G450h Firmware
Up to 1.90
Running on/withPlatform Versions
Buffalo
Wzr Hp G450h
All versions

References (4)

Source: vultures@jpcert.or.jp
Third Party Advisory
Source: vultures@jpcert.or.jp
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory

Timeline

No history available yet.