CVE-2021-3511
Published Apr 28, 2021
Last updated 2 years ago
Overview
- Description
- Disclosure of sensitive information to an unauthorized user vulnerability in Buffalo broadband routers (BHR-4GRV firmware Ver.1.99 and prior, DWR-HP-G300NH firmware Ver.1.83 and prior, HW-450HP-ZWE firmware Ver.1.99 and prior, WHR-300HP firmware Ver.1.99 and prior, WHR-300 firmware Ver.1.99 and prior, WHR-G301N firmware Ver.1.86 and prior, WHR-HP-G300N firmware Ver.1.99 and prior, WHR-HP-GN firmware Ver.1.86 and prior, WPL-05G300 firmware Ver.1.87 and prior, WZR-450HP-CWT firmware Ver.1.99 and prior, WZR-450HP-UB firmware Ver.1.99 and prior, WZR-HP-AG300H firmware Ver.1.75 and prior, WZR-HP-G300NH firmware Ver.1.83 and prior, WZR-HP-G301NH firmware Ver.1.83 and prior, WZR-HP-G302H firmware Ver.1.85 and prior, WZR-HP-G450H firmware Ver.1.89 and prior, WZR-300HP firmware Ver.1.99 and prior, WZR-450HP firmware Ver.1.99 and prior, WZR-600DHP firmware Ver.1.99 and prior, WZR-D1100H firmware Ver.1.99 and prior, FS-HP-G300N firmware Ver.3.32 and prior, FS-600DHP firmware Ver.3.38 and prior, FS-R600DHP firmware Ver.3.39 and prior, and FS-G300N firmware Ver.3.13 and prior) allows remote unauthenticated attackers to obtain information such as configuration via unspecified vectors.
- Source
- vultures@jpcert.or.jp
- NVD status
- Analyzed
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 4.3
- Impact score
- 1.4
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
- Severity
- MEDIUM
CVSS 2.0
- Type
- Primary
- Base score
- 3.3
- Impact score
- 2.9
- Exploitability score
- 6.5
- Vector string
- AV:A/AC:L/Au:N/C:P/I:N/A:N
Weaknesses
- nvd@nist.gov
- NVD-CWE-Other
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:buffalo:bhr-4grv_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "50014200-AEB2-474F-8472-AA9D61C63EBB",
"versionEndExcluding": "2.00"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:buffalo:bhr-4grv:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "48780EC9-0E32-4DB5-91C2-3DD9048BCDA1"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:buffalo:dwr-hp-g300nh_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D4A328F7-7578-4B0A-84E9-C9466B3928CA",
"versionEndExcluding": "1.84"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:buffalo:dwr-hp-g300nh:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "FE96F509-FF8C-409B-BB40-E05A9F722554"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:buffalo:hw-450hp-zwe_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F6429DFF-698C-4D6A-8499-BCD907889E55",
"versionEndExcluding": "2.00"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:buffalo:hw-450hp-zwe:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "54BE2F24-8A3F-426F-B935-62F82F83E457"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:buffalo:whr-300hp_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1D03A8D2-57AB-4384-86D3-541273F50F3B",
"versionEndExcluding": "2.00"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:buffalo:whr-300hp:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "697F6576-D774-4DC8-A2C9-A57F4E037F24"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:buffalo:whr-300_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "776F042B-0826-46E7-A385-DAEB84893E18",
"versionEndExcluding": "2.00"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:buffalo:whr-300:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "342ABB1C-DEB2-4B34-B5FB-A3D072B4760F"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:buffalo:whr-g301n_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A2421920-5863-48BB-B4C8-C2D36C232295",
"versionEndExcluding": "1.87"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:buffalo:whr-g301n:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "95600434-8888-40AA-9FF4-273031A9C316"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:buffalo:whr-hp-g300n_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0D7050D0-6398-465A-9FE5-7F195FCE2940",
"versionEndExcluding": "2.00"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:buffalo:whr-hp-g300n:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "D7E26183-35D3-4A44-8D9A-AB358957C75F"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:buffalo:whr-hp-gn_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9A19100A-DF19-4268-BAB0-33FBC4B413B9",
"versionEndExcluding": "1.87"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:buffalo:whr-hp-gn:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "6BC10377-CF91-43A5-BC3F-C690F291535A"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:buffalo:wpl-05g300_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "133F1788-993B-445B-AF28-1348BEBD30E4",
"versionEndExcluding": "1.88"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:buffalo:wpl-05g300:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "C6C24CCE-813A-4F11-B4A5-2AF075018F2A"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:buffalo:wzr-450hp-cwt_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3526B328-E0D8-419D-8C94-4D9098DAC1CE",
"versionEndExcluding": "2.00"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:buffalo:wzr-450hp-cwt:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "348D05E5-E619-4AE9-8A62-DF214899DB17"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:buffalo:wzr-450hp-ub_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B83893C6-CD36-42B7-B117-4964DC2A1322",
"versionEndExcluding": "2.00"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:buffalo:wzr-450hp-ub:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "C5923DA5-CF09-408D-BE0D-A878EFB8BB6B"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:buffalo:wzr-hp-ag300h_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5EF711EA-6449-4C83-A5E1-590CFC913FAD",
"versionEndExcluding": "1.76"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:buffalo:wzr-hp-ag300h:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "D1DBC06D-0003-4196-A360-59657454DAF6"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:buffalo:wzr-hp-g300nh_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A5C80B97-740C-4685-AFA4-F1C7A942A903",
"versionEndExcluding": "1.84"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:buffalo:wzr-hp-g300nh:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "CA3BFED6-500A-49C0-BBE1-E9AB5525C143"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:buffalo:wzr-hp-g301nh_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8E6462B9-978F-432E-BB7C-E8A2BFB73669",
"versionEndExcluding": "1.84"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:buffalo:wzr-hp-g301nh:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "A753B947-1562-4147-965B-6437C4328F44"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:buffalo:wzr-hp-g302h_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E4249F56-42ED-4F5F-AEE9-07335DAA23E4",
"versionEndExcluding": "1.86"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:buffalo:wzr-hp-g302h:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "CBE42D0C-2181-47E3-87AA-A50C0C3ED002"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:buffalo:wzr-hp-g450h_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AB5DEEF4-7D48-49D0-A4C5-23FC8DB07343",
"versionEndExcluding": "1.90"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:buffalo:wzr-hp-g450h:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "72BEF724-6B38-4862-A74D-9FB7F5EB4233"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:buffalo:wzr-300hp_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "32C5BCDF-BB62-4D58-95F3-317267DA170F",
"versionEndExcluding": "2.00"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:buffalo:wzr-300hp:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "80FFBDA4-E1A4-46CC-8EE0-6C92CB5C0A03"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:buffalo:wzr-450hp_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "26F1AA6C-F40B-44EC-BE80-BEFBB86CA6DC",
"versionEndExcluding": "2.00"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:buffalo:wzr-450hp:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "6014747F-30BA-4C65-8340-CA16C886A45B"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:buffalo:wzr-600dhp_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CEDF49B2-2981-4266-9DD0-3384AA1CEB6F",
"versionEndExcluding": "2.00"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:buffalo:wzr-600dhp:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "06AF9040-7F63-4E80-82DD-7448320BC940"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:buffalo:wzr-d1100h_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8C4E565E-6C13-4203-B119-5F338DD283F5",
"versionEndExcluding": "2.00"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:buffalo:wzr-d1100h:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "79BB1A7E-19AD-4897-B20F-03BDA7DCFA8C"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:buffalo:fs-hp-g300n_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9C2DD237-46C6-403C-BED5-762E1D36F77D",
"versionEndExcluding": "3.33"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:buffalo:fs-hp-g300n:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "E8BAF7C5-60B2-445A-9FB5-99FE0CDBEA3A"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:buffalo:fs-600dhp_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A0748472-978E-41A5-A172-AA326256C473",
"versionEndExcluding": "3.40"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:buffalo:fs-600dhp:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "AB3511D6-1738-43DD-ACBB-76D5C998906E"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:buffalo:fs-r600dhp_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D3CD88A9-F7BF-47E9-9C8B-159AEF4002A4",
"versionEndExcluding": "3.40"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:buffalo:fs-r600dhp:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "88A96BC7-410E-4341-A91C-343E44BEA3F5"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:buffalo:fs-g300n_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E38B272E-748F-4532-ADF9-A2A86F399ADB",
"versionEndExcluding": "3.14"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:buffalo:fs-g300n:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "84A229AF-D4F8-45CC-BAC1-792A24CAA6CF"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]