CVE-2021-3512
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Improper access control vulnerability in Buffalo broadband routers (BHR-4GRV firmware Ver.1.99 and prior, DWR-HP-G300NH firmware Ver.1.83 and prior, HW-450HP-ZWE firmware Ver.1.99 and prior, WHR-300HP firmware Ver.1.99 and prior, WHR-300 firmware Ver.1.99 and prior, WHR-G301N firmware Ver.1.86 and prior, WHR-HP-G300N firmware Ver.1.99 and prior, WHR-HP-GN firmware Ver.1.86 and prior, WPL-05G300 firmware Ver.1.87 and prior, WZR-450HP-CWT firmware Ver.1.99 and prior, WZR-450HP-UB firmware Ver.1.99 and prior, WZR-HP-AG300H firmware Ver.1.75 and prior, WZR-HP-G300NH firmware Ver.1.83 and prior, WZR-HP-G301NH firmware Ver.1.83 and prior, WZR-HP-G302H firmware Ver.1.85 and prior, WZR-HP-G450H firmware Ver.1.89 and prior, WZR-300HP firmware Ver.1.99 and prior, WZR-450HP firmware Ver.1.99 and prior, WZR-600DHP firmware Ver.1.99 and prior, WZR-D1100H firmware Ver.1.99 and prior, FS-HP-G300N firmware Ver.3.32 and prior, FS-600DHP firmware Ver.3.38 and prior, FS-R600DHP firmware Ver.3.39 and prior, and FS-G300N firmware Ver.3.13 and prior) allows remote unauthenticated attackers to bypass access restriction and to start telnet service and execute arbitrary OS commands with root privileges via unspecified vectors.
Una vulnerabilidad de control de acceso inapropiado en los enrutadores de banda ancha de Buffalo (firmware de BHR-4GRV Ver.1.99 y anterior, firmware de DWR-HP-G300NH Ver.1.83 y anterior, firmware HW-450HP-ZWE Ver.1.99 y anterior, firmware de WHR-300HP Ver.1.99 y versiones anteriores, firmware de WHR-300 Ver.1.99 y anteriores, firmware de WHR-G301N Ver.1.86 y anteriores, firmware de WHR-HP-G300N Ver.1.99 y anteriores, firmware de WHR-HP-GN Ver.1.86 y anteriores, WPL-05G300 firmware Ver.1.87 y anterior, firmware de WZR-450HP-CWT Ver.1.99 y anterior, firmware de WZR-450HP-UB Ver.1.99 y anterior, firmware de WZR-HP-AG300H Ver.1.75 y anterior, firmware de WZR-HP-G300NH Ver .1.83 y anteriores, firmware de WZR-HP-G301NH Ver.1.83 y anteriores, firmware de WZR-HP-G302H Ver.1.85 y anteriores, firmware de WZR-HP-G450H Ver.1.89 y anteriores, firmware de WZR-300HP Ver.1.99 y anteriores , Firmware WZR-450HP Ver.1.99 y anteriores, firmware de WZR-600DHP Ver.1.99 y anteriores, firmware WZR-D1100H Ver.1.99 y anteriores, firmware de FS-HP-G300N Ver.3.32 y anteriores, firmware de FS-600DHP Ver.3.38 y anteriores, firmware de FS-R600DHP Ver.3.39 y anteriores, y firmware de FS-G300N Ver.3.13 y anteriores) permite a atacantes remotos no autenticados omitir la restricción de acceso e iniciar el servicio Telnet y ejecutar comandos arbitrarios del Sistema Operativo con privilegios de root por medio de vectores no especificados
CVSS Scores
SSVC
- Decision:-
Timeline
- 2021-04-22 CVE Reserved
- 2021-04-28 CVE Published
- 2024-01-11 EPSS Updated
- 2024-08-03 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (2)
| URL | Tag | Source |
|---|---|---|
| https://jvn.jp/en/vu/JVNVU99235714/index.html | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://www.buffalo.jp/news/detail/20210427-01.html | 2022-07-12 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Buffalo Search vendor "Buffalo" | Bhr-4grv Firmware Search vendor "Buffalo" for product "Bhr-4grv Firmware" | < 2.00 Search vendor "Buffalo" for product "Bhr-4grv Firmware" and version " < 2.00" | - |
Affected
| in | Buffalo Search vendor "Buffalo" | Bhr-4grv Search vendor "Buffalo" for product "Bhr-4grv" | - | - |
Safe
|
| Buffalo Search vendor "Buffalo" | Dwr-hp-g300nh Firmware Search vendor "Buffalo" for product "Dwr-hp-g300nh Firmware" | < 1.84 Search vendor "Buffalo" for product "Dwr-hp-g300nh Firmware" and version " < 1.84" | - |
Affected
| in | Buffalo Search vendor "Buffalo" | Dwr-hp-g300nh Search vendor "Buffalo" for product "Dwr-hp-g300nh" | - | - |
Safe
|
| Buffalo Search vendor "Buffalo" | Hw-450hp-zwe Firmware Search vendor "Buffalo" for product "Hw-450hp-zwe Firmware" | < 2.00 Search vendor "Buffalo" for product "Hw-450hp-zwe Firmware" and version " < 2.00" | - |
Affected
| in | Buffalo Search vendor "Buffalo" | Hw-450hp-zwe Search vendor "Buffalo" for product "Hw-450hp-zwe" | - | - |
Safe
|
| Buffalo Search vendor "Buffalo" | Whr-300hp Firmware Search vendor "Buffalo" for product "Whr-300hp Firmware" | < 2.00 Search vendor "Buffalo" for product "Whr-300hp Firmware" and version " < 2.00" | - |
Affected
| in | Buffalo Search vendor "Buffalo" | Whr-300hp Search vendor "Buffalo" for product "Whr-300hp" | - | - |
Safe
|
| Buffalo Search vendor "Buffalo" | Whr-300 Firmware Search vendor "Buffalo" for product "Whr-300 Firmware" | < 2.00 Search vendor "Buffalo" for product "Whr-300 Firmware" and version " < 2.00" | - |
Affected
| in | Buffalo Search vendor "Buffalo" | Whr-300 Search vendor "Buffalo" for product "Whr-300" | - | - |
Safe
|
| Buffalo Search vendor "Buffalo" | Whr-g301n Firmware Search vendor "Buffalo" for product "Whr-g301n Firmware" | < 1.87 Search vendor "Buffalo" for product "Whr-g301n Firmware" and version " < 1.87" | - |
Affected
| in | Buffalo Search vendor "Buffalo" | Whr-g301n Search vendor "Buffalo" for product "Whr-g301n" | - | - |
Safe
|
| Buffalo Search vendor "Buffalo" | Whr-hp-g300n Firmware Search vendor "Buffalo" for product "Whr-hp-g300n Firmware" | < 2.00 Search vendor "Buffalo" for product "Whr-hp-g300n Firmware" and version " < 2.00" | - |
Affected
| in | Buffalo Search vendor "Buffalo" | Whr-hp-g300n Search vendor "Buffalo" for product "Whr-hp-g300n" | - | - |
Safe
|
| Buffalo Search vendor "Buffalo" | Whr-hp-gn Firmware Search vendor "Buffalo" for product "Whr-hp-gn Firmware" | < 1.87 Search vendor "Buffalo" for product "Whr-hp-gn Firmware" and version " < 1.87" | - |
Affected
| in | Buffalo Search vendor "Buffalo" | Whr-hp-gn Search vendor "Buffalo" for product "Whr-hp-gn" | - | - |
Safe
|
| Buffalo Search vendor "Buffalo" | Wpl-05g300 Firmware Search vendor "Buffalo" for product "Wpl-05g300 Firmware" | < 1.88 Search vendor "Buffalo" for product "Wpl-05g300 Firmware" and version " < 1.88" | - |
Affected
| in | Buffalo Search vendor "Buffalo" | Wpl-05g300 Search vendor "Buffalo" for product "Wpl-05g300" | - | - |
Safe
|
| Buffalo Search vendor "Buffalo" | Wzr-450hp-cwt Firmware Search vendor "Buffalo" for product "Wzr-450hp-cwt Firmware" | < 2.00 Search vendor "Buffalo" for product "Wzr-450hp-cwt Firmware" and version " < 2.00" | - |
Affected
| in | Buffalo Search vendor "Buffalo" | Wzr-450hp-cwt Search vendor "Buffalo" for product "Wzr-450hp-cwt" | - | - |
Safe
|
| Buffalo Search vendor "Buffalo" | Wzr-450hp-ub Firmware Search vendor "Buffalo" for product "Wzr-450hp-ub Firmware" | < 2.00 Search vendor "Buffalo" for product "Wzr-450hp-ub Firmware" and version " < 2.00" | - |
Affected
| in | Buffalo Search vendor "Buffalo" | Wzr-450hp-ub Search vendor "Buffalo" for product "Wzr-450hp-ub" | - | - |
Safe
|
| Buffalo Search vendor "Buffalo" | Wzr-hp-ag300h Firmware Search vendor "Buffalo" for product "Wzr-hp-ag300h Firmware" | < 1.76 Search vendor "Buffalo" for product "Wzr-hp-ag300h Firmware" and version " < 1.76" | - |
Affected
| in | Buffalo Search vendor "Buffalo" | Wzr-hp-ag300h Search vendor "Buffalo" for product "Wzr-hp-ag300h" | - | - |
Safe
|
| Buffalo Search vendor "Buffalo" | Wzr-hp-g300nh Firmware Search vendor "Buffalo" for product "Wzr-hp-g300nh Firmware" | < 1.84 Search vendor "Buffalo" for product "Wzr-hp-g300nh Firmware" and version " < 1.84" | - |
Affected
| in | Buffalo Search vendor "Buffalo" | Wzr-hp-g300nh Search vendor "Buffalo" for product "Wzr-hp-g300nh" | - | - |
Safe
|
| Buffalo Search vendor "Buffalo" | Wzr-hp-g301nh Firmware Search vendor "Buffalo" for product "Wzr-hp-g301nh Firmware" | < 1.84 Search vendor "Buffalo" for product "Wzr-hp-g301nh Firmware" and version " < 1.84" | - |
Affected
| in | Buffalo Search vendor "Buffalo" | Wzr-hp-g301nh Search vendor "Buffalo" for product "Wzr-hp-g301nh" | - | - |
Safe
|
| Buffalo Search vendor "Buffalo" | Wzr-hp-g302h Firmware Search vendor "Buffalo" for product "Wzr-hp-g302h Firmware" | < 1.86 Search vendor "Buffalo" for product "Wzr-hp-g302h Firmware" and version " < 1.86" | - |
Affected
| in | Buffalo Search vendor "Buffalo" | Wzr-hp-g302h Search vendor "Buffalo" for product "Wzr-hp-g302h" | - | - |
Safe
|
| Buffalo Search vendor "Buffalo" | Wzr-hp-g450h Firmware Search vendor "Buffalo" for product "Wzr-hp-g450h Firmware" | < 1.90 Search vendor "Buffalo" for product "Wzr-hp-g450h Firmware" and version " < 1.90" | - |
Affected
| in | Buffalo Search vendor "Buffalo" | Wzr-hp-g450h Search vendor "Buffalo" for product "Wzr-hp-g450h" | - | - |
Safe
|
| Buffalo Search vendor "Buffalo" | Wzr-300hp Firmware Search vendor "Buffalo" for product "Wzr-300hp Firmware" | < 2.00 Search vendor "Buffalo" for product "Wzr-300hp Firmware" and version " < 2.00" | - |
Affected
| in | Buffalo Search vendor "Buffalo" | Wzr-300hp Search vendor "Buffalo" for product "Wzr-300hp" | - | - |
Safe
|
| Buffalo Search vendor "Buffalo" | Wzr-450hp Firmware Search vendor "Buffalo" for product "Wzr-450hp Firmware" | < 2.00 Search vendor "Buffalo" for product "Wzr-450hp Firmware" and version " < 2.00" | - |
Affected
| in | Buffalo Search vendor "Buffalo" | Wzr-450hp Search vendor "Buffalo" for product "Wzr-450hp" | - | - |
Safe
|
| Buffalo Search vendor "Buffalo" | Wzr-600dhp Firmware Search vendor "Buffalo" for product "Wzr-600dhp Firmware" | < 2.00 Search vendor "Buffalo" for product "Wzr-600dhp Firmware" and version " < 2.00" | - |
Affected
| in | Buffalo Search vendor "Buffalo" | Wzr-600dhp Search vendor "Buffalo" for product "Wzr-600dhp" | - | - |
Safe
|
| Buffalo Search vendor "Buffalo" | Wzr-d1100h Firmware Search vendor "Buffalo" for product "Wzr-d1100h Firmware" | < 2.00 Search vendor "Buffalo" for product "Wzr-d1100h Firmware" and version " < 2.00" | - |
Affected
| in | Buffalo Search vendor "Buffalo" | Wzr-d1100h Search vendor "Buffalo" for product "Wzr-d1100h" | - | - |
Safe
|
| Buffalo Search vendor "Buffalo" | Fs-hp-g300n Firmware Search vendor "Buffalo" for product "Fs-hp-g300n Firmware" | < 3.33 Search vendor "Buffalo" for product "Fs-hp-g300n Firmware" and version " < 3.33" | - |
Affected
| in | Buffalo Search vendor "Buffalo" | Fs-hp-g300n Search vendor "Buffalo" for product "Fs-hp-g300n" | - | - |
Safe
|
| Buffalo Search vendor "Buffalo" | Fs-600dhp Firmware Search vendor "Buffalo" for product "Fs-600dhp Firmware" | < 3.40 Search vendor "Buffalo" for product "Fs-600dhp Firmware" and version " < 3.40" | - |
Affected
| in | Buffalo Search vendor "Buffalo" | Fs-600dhp Search vendor "Buffalo" for product "Fs-600dhp" | - | - |
Safe
|
| Buffalo Search vendor "Buffalo" | Fs-r600dhp Firmware Search vendor "Buffalo" for product "Fs-r600dhp Firmware" | < 3.40 Search vendor "Buffalo" for product "Fs-r600dhp Firmware" and version " < 3.40" | - |
Affected
| in | Buffalo Search vendor "Buffalo" | Fs-r600dhp Search vendor "Buffalo" for product "Fs-r600dhp" | - | - |
Safe
|
| Buffalo Search vendor "Buffalo" | Fs-g300n Firmware Search vendor "Buffalo" for product "Fs-g300n Firmware" | < 3.14 Search vendor "Buffalo" for product "Fs-g300n Firmware" and version " < 3.14" | - |
Affected
| in | Buffalo Search vendor "Buffalo" | Fs-g300n Search vendor "Buffalo" for product "Fs-g300n" | - | - |
Safe
|