HIGHCVE-2026-27650Published 2026-03-27Modified 2026-03-27CNA jpcert

CVE-2026-27650: OS Command Injection vulnerability exists in BUFFALO Wi-Fi router products

OS Command Injection vulnerability exists in BUFFALO Wi-Fi router products. If this vulnerability is exploited, an arbitrary OS command may be executed on the products.

CVSS v4.0: 8.6
Severity: HIGH
Fixed in: —
Affected Products: 1

Affected packages

BUFFALO INC. / BUFFALO Wi-Fi router products
See "References" section

CVSS Vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

References

buffalo.jp
jvn.jp

Metrics