Published: 11/04/2023 Updated: 18/04/2023

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 0

Use of hard-coded credentials vulnerability in Buffalo network devices allows an malicious user to access the debug function of the product. The affected products and versions are as follows: BS-GSL2024 firmware Ver. 1.10-0.03 and previous versions, BS-GSL2016P firmware Ver. 1.10-0.03 and previous versions, BS-GSL2016 firmware Ver. 1.10-0.03 and previous versions, BS-GS2008 firmware Ver. 1.0.10.01 and previous versions, BS-GS2016 firmware Ver. 1.0.10.01 and previous versions, BS-GS2024 firmware Ver. 1.0.10.01 and previous versions, BS-GS2048 firmware Ver. 1.0.10.01 and previous versions, BS-GS2008P firmware Ver. 1.0.10.01 and previous versions, BS-GS2016P firmware Ver. 1.0.10.01 and previous versions, and BS-GS2024P firmware Ver. 1.0.10.01 and previous versions

Vulnerable Product	Search on Vulmon	Subscribe to Product
buffalo bs-gsl2024_firmware
buffalo bs-gsl2016p_firmware
buffalo bs-gsl2016_firmware
buffalo bs-gs2008_firmware
buffalo bs-gs2016_firmware
buffalo bs-gs2024_firmware
buffalo bs-gs2048_firmware
buffalo bs-gs2008p_firmware
buffalo bs-gs2016p_firmware
buffalo bs-gs2024p_firmware
buffalo bs-gsl2005_firmware
buffalo bs-gsl2008_firmware
buffalo bs-gsl2005p_firmware
buffalo bs-gsl2008p_firmware
buffalo bs-gs2016hp_firmware
buffalo bs-gs2024hp_firmware

CWE-668 https://www.buffalo.jp/news/detail/20230310-01.html https://jvn.jp/en/vu/JVNVU96824262/https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2023-26588

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect