Vulnerability Details CVE-2015-8262
Buffalo WZR-600DHP2 devices with firmware 2.09, 2.13, and 2.16 use an improper algorithm for selecting the ID value in the header of a DNS query, which makes it easier for remote attackers to spoof responses by predicting this value.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 51.4%
CVSS Severity
CVSS v3 Score 6.8
CVSS v2 Score 5.0
References
Products affected by CVE-2015-8262
-
cpe:2.3:h:buffalotech:airstation_extreme_n600:-
-
cpe:2.3:o:buffalotech:airstation_extreme_n600_firmware:2.09
-
cpe:2.3:o:buffalotech:airstation_extreme_n600_firmware:2.13
-
cpe:2.3:o:buffalotech:airstation_extreme_n600_firmware:2.16