Vulnerability Details CVE-2014-9284
The Buffalo WHR-1166DHP 1.60 and earlier, WSR-600DHP 1.60 and earlier, WHR-600D 1.60 and earlier, WHR-300HP2 1.60 and earlier, WMR-300 1.60 and earlier, WEX-300 1.60 and earlier, and BHR-4GRV2 1.04 and earlier routers allow remote authenticated users to execute arbitrary OS commands via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 71.5%
CVSS Severity
CVSS v2 Score 7.7
References
Products affected by CVE-2014-9284
-
cpe:2.3:h:buffalotech:bhr-4grv2:-
-
cpe:2.3:h:buffalotech:bhr-4grv2_firmware:1.03
-
cpe:2.3:h:buffalotech:bhr-4grv2_firmware:1.04
-
cpe:2.3:h:buffalotech:wex-300:-
-
cpe:2.3:h:buffalotech:wex-300_firmware:1.50
-
cpe:2.3:h:buffalotech:wex-300_firmware:1.60
-
cpe:2.3:h:buffalotech:whr-1166dhp:-
-
cpe:2.3:h:buffalotech:whr-1166dhp_firmware:1.41
-
cpe:2.3:h:buffalotech:whr-1166dhp_firmware:1.60
-
cpe:2.3:h:buffalotech:whr-300hp2:-
-
cpe:2.3:h:buffalotech:whr-300hp2_firmware:1.10
-
cpe:2.3:h:buffalotech:whr-300hp2_firmware:1.20
-
cpe:2.3:h:buffalotech:whr-300hp2_firmware:1.40
-
cpe:2.3:h:buffalotech:whr-300hp2_firmware:1.60
-
cpe:2.3:h:buffalotech:whr-600d:-
-
cpe:2.3:h:buffalotech:whr-600d_firmware:1.41
-
cpe:2.3:h:buffalotech:whr-600d_firmware:1.60
-
cpe:2.3:h:buffalotech:wmr-300:-
-
cpe:2.3:h:buffalotech:wmr-300_firmware:1.02
-
cpe:2.3:h:buffalotech:wmr-300_firmware:1.03
-
cpe:2.3:h:buffalotech:wmr-300_firmware:1.30
-
cpe:2.3:h:buffalotech:wmr-300_firmware:1.60
-
cpe:2.3:h:buffalotech:wsr-600dhp:-
-
cpe:2.3:h:buffalotech:wsr-600dhp_firmware:1.60