CVE-2023-26588
7.5
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Exploitability: 3.9 / Impact: 3.6
Source: NVD
Description
Use of hard-coded credentials vulnerability in Buffalo network devices allows an attacker to access the debug function of the product. The affected products and versions are as follows: BS-GSL2024 firmware Ver. 1.10-0.03 and earlier, BS-GSL2016P firmware Ver. 1.10-0.03 and earlier, BS-GSL2016 firmware Ver. 1.10-0.03 and earlier, BS-GS2008 firmware Ver. 1.0.10.01 and earlier, BS-GS2016 firmware Ver. 1.0.10.01 and earlier, BS-GS2024 firmware Ver. 1.0.10.01 and earlier, BS-GS2048 firmware Ver. 1.0.10.01 and earlier, BS-GS2008P firmware Ver. 1.0.10.01 and earlier, BS-GS2016P firmware Ver. 1.0.10.01 and earlier, and BS-GS2024P firmware Ver. 1.0.10.01 and earlier
Affected (18)
Products: Buffalo: Bs Gsl2024 Firmware, Bs Gsl2016p Firmware, Bs Gsl2016 Firmware, Bs Gs2008 Firmware, Bs Gs2016 Firmware, Bs Gs2024 Firmware, Bs Gs2048 Firmware, Bs Gs2008p Firmware, Bs Gs2016p Firmware, Bs Gs2024p Firmware, Bs Gsl2005 Firmware, Bs Gsl2008 Firmware, Bs Gsl2005p Firmware, Bs Gsl2008p Firmware, Bs Gs2016hp Firmware, Bs Gs2024hp Firmware
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 1.10-0.03 |
| Running on/with | Platform Versions |
|---|---|
Buffalo Bs Gsl2024 | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 1.10-0.03 |
| Running on/with | Platform Versions |
|---|---|
Buffalo Bs Gsl2016p | All versions |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 1.10-0.03 |
| Running on/with | Platform Versions |
|---|---|
Buffalo Bs Gsl2016 | All versions |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 1.0.10.01 |
| Running on/with | Platform Versions |
|---|---|
Buffalo Bs Gs2008 | All versions |
Configuration E
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 1.0.10.01 |
| Running on/with | Platform Versions |
|---|---|
Buffalo Bs Gs2016 | All versions |
Configuration F
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 1.0.10.01 |
| Running on/with | Platform Versions |
|---|---|
Buffalo Bs Gs2024 | All versions |
Configuration G
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 1.0.10.01 |
| Running on/with | Platform Versions |
|---|---|
Buffalo Bs Gs2048 | All versions |
Configuration H
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 1.0.10.01 |
| Running on/with | Platform Versions |
|---|---|
Buffalo Bs Gs2008p | All versions |
Configuration I
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 1.0.10.01 |
Configuration J
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 1.0.10.01 |
Configuration K
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.12-0.01 |
| Running on/with | Platform Versions |
|---|---|
Buffalo Bs Gsl2005 | All versions |
Configuration L
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.12-0.01 |
| Running on/with | Platform Versions |
|---|---|
Buffalo Bs Gsl2008 | All versions |
Configuration M
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.11-0.01 |
| Running on/with | Platform Versions |
|---|---|
Buffalo Bs Gsl2005p | All versions |
Configuration N
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.11-0.01 |
| Running on/with | Platform Versions |
|---|---|
Buffalo Bs Gsl2008p | All versions |
Configuration O
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.1.7.01 |
| Running on/with | Platform Versions |
|---|---|
Buffalo Bs Gs2016p | All versions |
Configuration P
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.1.7.01 |
| Running on/with | Platform Versions |
|---|---|
Buffalo Bs Gs2016hp | All versions |
Configuration Q
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.1.7.01 |
| Running on/with | Platform Versions |
|---|---|
Buffalo Bs Gs2024p | All versions |
Configuration R
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.1.7.01 |
| Running on/with | Platform Versions |
|---|---|
Buffalo Bs Gs2024hp | All versions |
References (4)
Source: af854a3a-2127-422b-91ae-364da2661108
PatchThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Timeline
No history available yet.