Search
Find a vulnerability
Search criteria
4 vulnerabilities found for bbr-4hg_firmware by buffalo
CVE-2017-10897 (GCVE-0-2017-10897)
Vulnerability from nvd – Published: 2017-12-08 15:00 – Updated: 2024-08-05 17:50
VLAI
EPSS
VEX
Summary
Input validation issue in Buffalo BBR-4HG and and BBR-4MG broadband routers with firmware 1.00 to 1.48 and 2.00 to 2.07 allows an attacker to cause the device to become unresponsive via unspecified vectors.
Severity
No CVSS data available.
CWE
- Improper Input Validation
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://jvn.jp/en/jp/JVN65994435/index.html | third-party-advisoryx_refsource_JVN |
| http://buffalo.jp/support_s/s20171201.html | x_refsource_CONFIRM |
Impacted products
2 products
| Vendor | Product | Version | |
|---|---|---|---|
| BUFFALO INC. | BBR-4HG |
Affected:
firmware 1.00 to 1.48
Affected: firmware 2.00 to 2.07 |
|
| BUFFALO INC. | BBR-4MG |
Affected:
firmware 1.00 to 1.48
Affected: firmware 2.00 to 2.07 |
Date Public
2017-12-01 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T17:50:12.489Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "JVN#65994435",
"tags": [
"third-party-advisory",
"x_refsource_JVN",
"x_transferred"
],
"url": "https://jvn.jp/en/jp/JVN65994435/index.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://buffalo.jp/support_s/s20171201.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "BBR-4HG",
"vendor": "BUFFALO INC.",
"versions": [
{
"status": "affected",
"version": "firmware 1.00 to 1.48"
},
{
"status": "affected",
"version": "firmware 2.00 to 2.07"
}
]
},
{
"product": "BBR-4MG",
"vendor": "BUFFALO INC.",
"versions": [
{
"status": "affected",
"version": "firmware 1.00 to 1.48"
},
{
"status": "affected",
"version": "firmware 2.00 to 2.07"
}
]
}
],
"datePublic": "2017-12-01T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Input validation issue in Buffalo BBR-4HG and and BBR-4MG broadband routers with firmware 1.00 to 1.48 and 2.00 to 2.07 allows an attacker to cause the device to become unresponsive via unspecified vectors."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Improper Input Validation",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-12-08T14:57:01.000Z",
"orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"shortName": "jpcert"
},
"references": [
{
"name": "JVN#65994435",
"tags": [
"third-party-advisory",
"x_refsource_JVN"
],
"url": "https://jvn.jp/en/jp/JVN65994435/index.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://buffalo.jp/support_s/s20171201.html"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "vultures@jpcert.or.jp",
"ID": "CVE-2017-10897",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "BBR-4HG",
"version": {
"version_data": [
{
"version_value": "firmware 1.00 to 1.48"
},
{
"version_value": "firmware 2.00 to 2.07"
}
]
}
},
{
"product_name": "BBR-4MG",
"version": {
"version_data": [
{
"version_value": "firmware 1.00 to 1.48"
},
{
"version_value": "firmware 2.00 to 2.07"
}
]
}
}
]
},
"vendor_name": "BUFFALO INC."
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Input validation issue in Buffalo BBR-4HG and and BBR-4MG broadband routers with firmware 1.00 to 1.48 and 2.00 to 2.07 allows an attacker to cause the device to become unresponsive via unspecified vectors."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Improper Input Validation"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "JVN#65994435",
"refsource": "JVN",
"url": "https://jvn.jp/en/jp/JVN65994435/index.html"
},
{
"name": "http://buffalo.jp/support_s/s20171201.html",
"refsource": "CONFIRM",
"url": "http://buffalo.jp/support_s/s20171201.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"assignerShortName": "jpcert",
"cveId": "CVE-2017-10897",
"datePublished": "2017-12-08T15:00:00.000Z",
"dateReserved": "2017-07-04T00:00:00.000Z",
"dateUpdated": "2024-08-05T17:50:12.489Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2017-10896 (GCVE-0-2017-10896)
Vulnerability from nvd – Published: 2017-12-08 15:00 – Updated: 2024-08-05 17:50
VLAI
EPSS
VEX
Summary
Cross-site scripting vulnerability in Buffalo BBR-4HG and and BBR-4MG broadband routers with firmware 1.00 to 1.48 and 2.00 to 2.07 allows an attacker to inject arbitrary web script or HTML via unspecified vectors.
Severity
No CVSS data available.
CWE
- Cross-site scripting
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://jvn.jp/en/jp/JVN65994435/index.html | third-party-advisoryx_refsource_JVN |
| http://buffalo.jp/support_s/s20171201.html | x_refsource_CONFIRM |
Impacted products
2 products
| Vendor | Product | Version | |
|---|---|---|---|
| BUFFALO INC. | BBR-4HG |
Affected:
firmware 1.00 to 1.48
Affected: firmware 2.00 to 2.07 |
|
| BUFFALO INC. | BBR-4MG |
Affected:
firmware 1.00 to 1.48
Affected: firmware 2.00 to 2.07 |
Date Public
2017-12-01 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T17:50:12.602Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "JVN#65994435",
"tags": [
"third-party-advisory",
"x_refsource_JVN",
"x_transferred"
],
"url": "https://jvn.jp/en/jp/JVN65994435/index.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://buffalo.jp/support_s/s20171201.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "BBR-4HG",
"vendor": "BUFFALO INC.",
"versions": [
{
"status": "affected",
"version": "firmware 1.00 to 1.48"
},
{
"status": "affected",
"version": "firmware 2.00 to 2.07"
}
]
},
{
"product": "BBR-4MG",
"vendor": "BUFFALO INC.",
"versions": [
{
"status": "affected",
"version": "firmware 1.00 to 1.48"
},
{
"status": "affected",
"version": "firmware 2.00 to 2.07"
}
]
}
],
"datePublic": "2017-12-01T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Cross-site scripting vulnerability in Buffalo BBR-4HG and and BBR-4MG broadband routers with firmware 1.00 to 1.48 and 2.00 to 2.07 allows an attacker to inject arbitrary web script or HTML via unspecified vectors."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Cross-site scripting",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-12-08T14:57:01.000Z",
"orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"shortName": "jpcert"
},
"references": [
{
"name": "JVN#65994435",
"tags": [
"third-party-advisory",
"x_refsource_JVN"
],
"url": "https://jvn.jp/en/jp/JVN65994435/index.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://buffalo.jp/support_s/s20171201.html"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "vultures@jpcert.or.jp",
"ID": "CVE-2017-10896",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "BBR-4HG",
"version": {
"version_data": [
{
"version_value": "firmware 1.00 to 1.48"
},
{
"version_value": "firmware 2.00 to 2.07"
}
]
}
},
{
"product_name": "BBR-4MG",
"version": {
"version_data": [
{
"version_value": "firmware 1.00 to 1.48"
},
{
"version_value": "firmware 2.00 to 2.07"
}
]
}
}
]
},
"vendor_name": "BUFFALO INC."
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Cross-site scripting vulnerability in Buffalo BBR-4HG and and BBR-4MG broadband routers with firmware 1.00 to 1.48 and 2.00 to 2.07 allows an attacker to inject arbitrary web script or HTML via unspecified vectors."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Cross-site scripting"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "JVN#65994435",
"refsource": "JVN",
"url": "https://jvn.jp/en/jp/JVN65994435/index.html"
},
{
"name": "http://buffalo.jp/support_s/s20171201.html",
"refsource": "CONFIRM",
"url": "http://buffalo.jp/support_s/s20171201.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"assignerShortName": "jpcert",
"cveId": "CVE-2017-10896",
"datePublished": "2017-12-08T15:00:00.000Z",
"dateReserved": "2017-07-04T00:00:00.000Z",
"dateUpdated": "2024-08-05T17:50:12.602Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2017-10896 (GCVE-0-2017-10896)
Vulnerability from cvelistv5 – Published: 2017-12-08 15:00 – Updated: 2024-08-05 17:50
VLAI
EPSS
VEX
Summary
Cross-site scripting vulnerability in Buffalo BBR-4HG and and BBR-4MG broadband routers with firmware 1.00 to 1.48 and 2.00 to 2.07 allows an attacker to inject arbitrary web script or HTML via unspecified vectors.
Severity
No CVSS data available.
CWE
- Cross-site scripting
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://jvn.jp/en/jp/JVN65994435/index.html | third-party-advisoryx_refsource_JVN |
| http://buffalo.jp/support_s/s20171201.html | x_refsource_CONFIRM |
Impacted products
2 products
| Vendor | Product | Version | |
|---|---|---|---|
| BUFFALO INC. | BBR-4HG |
Affected:
firmware 1.00 to 1.48
Affected: firmware 2.00 to 2.07 |
|
| BUFFALO INC. | BBR-4MG |
Affected:
firmware 1.00 to 1.48
Affected: firmware 2.00 to 2.07 |
Date Public
2017-12-01 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T17:50:12.602Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "JVN#65994435",
"tags": [
"third-party-advisory",
"x_refsource_JVN",
"x_transferred"
],
"url": "https://jvn.jp/en/jp/JVN65994435/index.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://buffalo.jp/support_s/s20171201.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "BBR-4HG",
"vendor": "BUFFALO INC.",
"versions": [
{
"status": "affected",
"version": "firmware 1.00 to 1.48"
},
{
"status": "affected",
"version": "firmware 2.00 to 2.07"
}
]
},
{
"product": "BBR-4MG",
"vendor": "BUFFALO INC.",
"versions": [
{
"status": "affected",
"version": "firmware 1.00 to 1.48"
},
{
"status": "affected",
"version": "firmware 2.00 to 2.07"
}
]
}
],
"datePublic": "2017-12-01T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Cross-site scripting vulnerability in Buffalo BBR-4HG and and BBR-4MG broadband routers with firmware 1.00 to 1.48 and 2.00 to 2.07 allows an attacker to inject arbitrary web script or HTML via unspecified vectors."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Cross-site scripting",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-12-08T14:57:01.000Z",
"orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"shortName": "jpcert"
},
"references": [
{
"name": "JVN#65994435",
"tags": [
"third-party-advisory",
"x_refsource_JVN"
],
"url": "https://jvn.jp/en/jp/JVN65994435/index.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://buffalo.jp/support_s/s20171201.html"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "vultures@jpcert.or.jp",
"ID": "CVE-2017-10896",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "BBR-4HG",
"version": {
"version_data": [
{
"version_value": "firmware 1.00 to 1.48"
},
{
"version_value": "firmware 2.00 to 2.07"
}
]
}
},
{
"product_name": "BBR-4MG",
"version": {
"version_data": [
{
"version_value": "firmware 1.00 to 1.48"
},
{
"version_value": "firmware 2.00 to 2.07"
}
]
}
}
]
},
"vendor_name": "BUFFALO INC."
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Cross-site scripting vulnerability in Buffalo BBR-4HG and and BBR-4MG broadband routers with firmware 1.00 to 1.48 and 2.00 to 2.07 allows an attacker to inject arbitrary web script or HTML via unspecified vectors."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Cross-site scripting"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "JVN#65994435",
"refsource": "JVN",
"url": "https://jvn.jp/en/jp/JVN65994435/index.html"
},
{
"name": "http://buffalo.jp/support_s/s20171201.html",
"refsource": "CONFIRM",
"url": "http://buffalo.jp/support_s/s20171201.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"assignerShortName": "jpcert",
"cveId": "CVE-2017-10896",
"datePublished": "2017-12-08T15:00:00.000Z",
"dateReserved": "2017-07-04T00:00:00.000Z",
"dateUpdated": "2024-08-05T17:50:12.602Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2017-10897 (GCVE-0-2017-10897)
Vulnerability from cvelistv5 – Published: 2017-12-08 15:00 – Updated: 2024-08-05 17:50
VLAI
EPSS
VEX
Summary
Input validation issue in Buffalo BBR-4HG and and BBR-4MG broadband routers with firmware 1.00 to 1.48 and 2.00 to 2.07 allows an attacker to cause the device to become unresponsive via unspecified vectors.
Severity
No CVSS data available.
CWE
- Improper Input Validation
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://jvn.jp/en/jp/JVN65994435/index.html | third-party-advisoryx_refsource_JVN |
| http://buffalo.jp/support_s/s20171201.html | x_refsource_CONFIRM |
Impacted products
2 products
| Vendor | Product | Version | |
|---|---|---|---|
| BUFFALO INC. | BBR-4HG |
Affected:
firmware 1.00 to 1.48
Affected: firmware 2.00 to 2.07 |
|
| BUFFALO INC. | BBR-4MG |
Affected:
firmware 1.00 to 1.48
Affected: firmware 2.00 to 2.07 |
Date Public
2017-12-01 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T17:50:12.489Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "JVN#65994435",
"tags": [
"third-party-advisory",
"x_refsource_JVN",
"x_transferred"
],
"url": "https://jvn.jp/en/jp/JVN65994435/index.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://buffalo.jp/support_s/s20171201.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "BBR-4HG",
"vendor": "BUFFALO INC.",
"versions": [
{
"status": "affected",
"version": "firmware 1.00 to 1.48"
},
{
"status": "affected",
"version": "firmware 2.00 to 2.07"
}
]
},
{
"product": "BBR-4MG",
"vendor": "BUFFALO INC.",
"versions": [
{
"status": "affected",
"version": "firmware 1.00 to 1.48"
},
{
"status": "affected",
"version": "firmware 2.00 to 2.07"
}
]
}
],
"datePublic": "2017-12-01T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Input validation issue in Buffalo BBR-4HG and and BBR-4MG broadband routers with firmware 1.00 to 1.48 and 2.00 to 2.07 allows an attacker to cause the device to become unresponsive via unspecified vectors."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Improper Input Validation",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-12-08T14:57:01.000Z",
"orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"shortName": "jpcert"
},
"references": [
{
"name": "JVN#65994435",
"tags": [
"third-party-advisory",
"x_refsource_JVN"
],
"url": "https://jvn.jp/en/jp/JVN65994435/index.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://buffalo.jp/support_s/s20171201.html"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "vultures@jpcert.or.jp",
"ID": "CVE-2017-10897",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "BBR-4HG",
"version": {
"version_data": [
{
"version_value": "firmware 1.00 to 1.48"
},
{
"version_value": "firmware 2.00 to 2.07"
}
]
}
},
{
"product_name": "BBR-4MG",
"version": {
"version_data": [
{
"version_value": "firmware 1.00 to 1.48"
},
{
"version_value": "firmware 2.00 to 2.07"
}
]
}
}
]
},
"vendor_name": "BUFFALO INC."
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Input validation issue in Buffalo BBR-4HG and and BBR-4MG broadband routers with firmware 1.00 to 1.48 and 2.00 to 2.07 allows an attacker to cause the device to become unresponsive via unspecified vectors."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Improper Input Validation"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "JVN#65994435",
"refsource": "JVN",
"url": "https://jvn.jp/en/jp/JVN65994435/index.html"
},
{
"name": "http://buffalo.jp/support_s/s20171201.html",
"refsource": "CONFIRM",
"url": "http://buffalo.jp/support_s/s20171201.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"assignerShortName": "jpcert",
"cveId": "CVE-2017-10897",
"datePublished": "2017-12-08T15:00:00.000Z",
"dateReserved": "2017-07-04T00:00:00.000Z",
"dateUpdated": "2024-08-05T17:50:12.489Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}