Buffalo Ts5600d1206 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Buffalo Ts5600d1206 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2018-13324 — CVSS 9.8 (critical): Incorrect access control in nasapi in Buffalo TS5600D1206 version 3.61-0.10 allows attackers to bypass authentication by sending a modified…
CVE-2018-13321 — CVSS 8.8 (high): Incorrect access controls in nasapi in Buffalo TS5600D1206 version 3.61-0.10 allow attackers to call dangerous internal functions via the…
CVE-2018-13319 — CVSS 7.5 (high): Incorrect access control in get_portal_info in Buffalo TS5600D1206 version 3.61-0.10 allows attackers to determine sensitive device…
CVE-2018-13320 — CVSS 7.2 (high): System Command Injection in network.set_auth_settings in Buffalo TS5600D1206 version 3.70-0.10 allows attackers to execute system commands…
CVE-2018-13318 — CVSS 7.2 (high): System command injection in User.create method in Buffalo TS5600D1206 version 3.61-0.10 allows attackers to execute system commands via the…
CVE-2018-13322 — CVSS 6.5 (medium): Directory traversal in list_folders method in Buffalo TS5600D1206 version 3.61-0.10 allows attackers to list directory contents via the…
CVE-2018-13323 — CVSS 6.1 (medium): Cross-site scripting in detail.html in Buffalo TS5600D1206 version 3.61-0.10 allows attackers to execute JavaScript via the "username"…