fkie_cve-2011-1324
Vulnerability from fkie_nvd
Published
2011-05-09 19:55
Modified
2025-04-11 00:51
Severity ?
Summary
Multiple cross-site request forgery (CSRF) vulnerabilities in the management screen on Buffalo WHR, WZR2, WZR, WER, and BBR series routers with firmware 1.x; BHR-4RV and FS-G54 routers with firmware 2.x; and AS-100 routers allow remote attackers to hijack the authentication of administrators for requests that modify settings, as demonstrated by changing the login password.
References
Impacted products
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:buffalotech:bbr-4hg_firmware:1.02:*:*:*:*:*:*:*",
"matchCriteriaId": "647D477D-7858-4DD2-872E-76A9FCD08D28",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:bbr-4hg_firmware:1.04:*:*:*:*:*:*:*",
"matchCriteriaId": "BB5679E1-81E0-49DB-9F42-2D05C2984E01",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:bbr-4hg_firmware:1.04:beta:*:*:*:*:*:*",
"matchCriteriaId": "BCB68F2F-FE4A-4C77-B9C9-AE433740239C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:bbr-4hg_firmware:1.10:*:*:*:*:*:*:*",
"matchCriteriaId": "72A2C0F5-C5E4-421D-99F7-2BE75FF59C57",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:bbr-4hg_firmware:1.10:beta:*:*:*:*:*:*",
"matchCriteriaId": "6AB8772F-A6DD-4A7A-9B21-4D7BF46115D2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:bbr-4hg_firmware:1.11:beta:*:*:*:*:*:*",
"matchCriteriaId": "35942805-366F-43F6-9E96-C18E0810A579",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:bbr-4hg_firmware:1.12:*:*:*:*:*:*:*",
"matchCriteriaId": "7B8FC665-64B9-4EC1-A34D-4CDDA1099EF2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:bbr-4hg_firmware:1.20:*:*:*:*:*:*:*",
"matchCriteriaId": "447B081A-D022-4FC0-84BB-99BC0583E81F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:bbr-4hg_firmware:1.20:beta:*:*:*:*:*:*",
"matchCriteriaId": "12194EF0-3432-4300-8369-90B0CEB4073B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:bbr-4hg_firmware:1.30:*:*:*:*:*:*:*",
"matchCriteriaId": "F5B598F6-ED55-4C85-908D-503DB4EAC111",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:bbr-4hg_firmware:1.30:beta:*:*:*:*:*:*",
"matchCriteriaId": "44012BB3-FF0D-47FD-AFBB-25ADA9B6017E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:bbr-4hg_firmware:1.31:*:*:*:*:*:*:*",
"matchCriteriaId": "C02712DD-E328-4FF6-B404-726D66DA86D0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:bbr-4hg_firmware:1.32:*:*:*:*:*:*:*",
"matchCriteriaId": "2EBB14E0-715B-48DE-80D7-246441939576",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:bbr-4hg_firmware:1.32:beta:*:*:*:*:*:*",
"matchCriteriaId": "1E4B006B-410B-485D-9C36-D6AB4C1BA2DB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:bbr-4hg_firmware:1.33:beta:*:*:*:*:*:*",
"matchCriteriaId": "4433AEEE-9B28-4F1E-9356-84D5ED930AAE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:bbr-4mg_firmware:1.00:*:*:*:*:*:*:*",
"matchCriteriaId": "198BC9CE-F4E3-4CC8-BC68-F069E3282C42",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:bbr-4mg_firmware:1.01:beta:*:*:*:*:*:*",
"matchCriteriaId": "03857B8B-C43D-4228-8970-31E2550BAC02",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:bbr-4mg_firmware:1.03:*:*:*:*:*:*:*",
"matchCriteriaId": "8DE39654-DEBA-416C-A732-845E770A9F33",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:bbr-4mg_firmware:1.04:*:*:*:*:*:*:*",
"matchCriteriaId": "6C1A560B-6CAA-4EF9-BDF0-57716357BA3E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:bbr-4mg_firmware:1.04:beta:*:*:*:*:*:*",
"matchCriteriaId": "615F9DAC-C453-4760-9DEC-F6CBC81359C6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:bbr-4mg_firmware:1.10:*:*:*:*:*:*:*",
"matchCriteriaId": "1B1E2CC3-DA79-4140-BCA5-BB8D800DA9EE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:bbr-4mg_firmware:1.10:beta:*:*:*:*:*:*",
"matchCriteriaId": "233B463A-3F0F-4DDB-BA76-547E8004BCC8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:bbr-4mg_firmware:1.11:beta:*:*:*:*:*:*",
"matchCriteriaId": "641A9605-D4A5-4428-85EB-174023E3D222",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:bbr-4mg_firmware:1.12:*:*:*:*:*:*:*",
"matchCriteriaId": "3BB907E0-5A97-42AF-BE72-B30B52DA14CD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:bbr-4mg_firmware:1.20:*:*:*:*:*:*:*",
"matchCriteriaId": "5C5890B6-9738-4E39-9A1A-7E9FC61FD4E9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:bbr-4mg_firmware:1.20:beta:*:*:*:*:*:*",
"matchCriteriaId": "A42B4E40-AE01-48EE-9C2A-F8A3153B2AF8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:bbr-4mg_firmware:1.30:*:*:*:*:*:*:*",
"matchCriteriaId": "6849D170-D6FC-4BF7-8BCB-E648A659DA35",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:bbr-4mg_firmware:1.30:beta:*:*:*:*:*:*",
"matchCriteriaId": "30997DAB-D55F-4BAC-9359-DD2E2E330775",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:bbr-4mg_firmware:1.31:*:*:*:*:*:*:*",
"matchCriteriaId": "B2208DE5-6C71-4E28-A48E-8335C73C903B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:bbr-4mg_firmware:1.32:*:*:*:*:*:*:*",
"matchCriteriaId": "BC632DFF-BDDE-41AA-B2AC-A9171A5B20F2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:bbr-4mg_firmware:1.32:beta:*:*:*:*:*:*",
"matchCriteriaId": "ADC8D293-3D70-4570-881D-359C68AA0CC5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:bbr-4mg_firmware:1.33:*:*:*:*:*:*:*",
"matchCriteriaId": "74CD2AD5-41C9-47DA-8828-CFF1ECE79D4A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:bbr-4mg_firmware:1.33:beta:*:*:*:*:*:*",
"matchCriteriaId": "DEC4BEC6-04C9-4167-A406-AABB80AA9C5E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:bhr-4rv_firmware:2.31:*:*:*:*:*:*:*",
"matchCriteriaId": "AF12AB6B-B964-4FE7-BE37-5D941B424270",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:bhr-4rv_firmware:2.32:prebeta:*:*:*:*:*:*",
"matchCriteriaId": "496FD5E4-6D75-48F7-AC41-5A325002782E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:bhr-4rv_firmware:2.33:prebeta:*:*:*:*:*:*",
"matchCriteriaId": "407DE9B5-A72E-49C0-A1D9-21F2B447D454",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:bhr-4rv_firmware:2.42:*:*:*:*:*:*:*",
"matchCriteriaId": "BD7E325E-416B-46DF-8B2A-673D1765E322",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:bhr-4rv_firmware:2.46:*:*:*:*:*:*:*",
"matchCriteriaId": "81C57617-68ED-4842-842C-AC9A9394BB8A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:bhr-4rv_firmware:2.48:*:*:*:*:*:*:*",
"matchCriteriaId": "FEC1081A-FA35-49DD-9D93-C8978DD85523",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:fs-g54_firmware:2.07:*:*:*:*:*:*:*",
"matchCriteriaId": "434C4E79-4EC4-4C7A-B38F-135755AAC9D6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:wer-a54g54_firmware:1.00:*:*:*:*:*:*:*",
"matchCriteriaId": "40FDCBD7-44CC-4E52-BDDE-3D8EABC74B80",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:wer-a54g54_firmware:1.01:beta:*:*:*:*:*:*",
"matchCriteriaId": "17B13CE9-8E95-4B46-BCC2-940F8329D3C2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:wer-a54g54_firmware:1.02:*:*:*:*:*:*:*",
"matchCriteriaId": "734C10CE-DC42-40C8-9E7E-2475A4AEB701",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:wer-a54g54_firmware:1.03:*:*:*:*:*:*:*",
"matchCriteriaId": "8C85E35E-9ED1-4A44-8661-FC905C292A5B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:wer-a54g54_firmware:1.10:*:*:*:*:*:*:*",
"matchCriteriaId": "86A14B32-914E-46A7-9C2F-024D1F7D4709",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:wer-a54g54_firmware:1.12:*:*:*:*:*:*:*",
"matchCriteriaId": "BE3113AA-75DE-401A-87EB-73EC7B1FDA56",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:wer-a54g54_firmware:1.12:beta:*:*:*:*:*:*",
"matchCriteriaId": "9A2FE89C-2D33-4ECE-8FFA-C7DB01D2E6E1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:wer-a54g54_firmware:1.13:*:*:*:*:*:*:*",
"matchCriteriaId": "3B699573-9F27-4FB6-9B8B-CBE935EACE53",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:wer-ag54_firmware:1.04:*:*:*:*:*:*:*",
"matchCriteriaId": "88D283C6-8011-41CE-9C21-194811378DAC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:wer-ag54_firmware:1.12:*:*:*:*:*:*:*",
"matchCriteriaId": "C94834DA-2FC4-4683-ACEF-5A4CAA452B91",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:wer-ag54_firmware:1.12:beta:*:*:*:*:*:*",
"matchCriteriaId": "1BC99770-84D8-445E-AC29-A838FD5CEB24",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:wer-am54g54_firmware:1.11:*:*:*:*:*:*:*",
"matchCriteriaId": "D8211BB2-3590-43BC-9DA9-65290EEEE5FE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:wer-am54g54_firmware:1.12:*:*:*:*:*:*:*",
"matchCriteriaId": "17303520-DC29-4F25-9566-1E01D0D0A4E2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:wer-am54g54_firmware:1.12:beta:*:*:*:*:*:*",
"matchCriteriaId": "B2619A4A-29E6-4C4A-B166-59BC34C3A4B7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:wer-am54g54_firmware:1.13:*:*:*:*:*:*:*",
"matchCriteriaId": "96DD1C36-E5D9-4F73-BC2E-1D39454590B5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:wer-am54g54_firmware:1.14:*:*:*:*:*:*:*",
"matchCriteriaId": "A4953CB8-844F-45BE-9E06-278CC8A9F8FC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:wer-amg54_firmware:1.11:*:*:*:*:*:*:*",
"matchCriteriaId": "D75C3ED7-84B2-4AEC-B5F7-F516D0AE5C0D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:wer-amg54_firmware:1.12:*:*:*:*:*:*:*",
"matchCriteriaId": "E0D5F769-D56B-4EAB-B587-3E068D293850",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:wer-amg54_firmware:1.14:*:*:*:*:*:*:*",
"matchCriteriaId": "8B7BD7C3-F954-49F4-883B-BFEE708D557E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:whr-am54g54_firmware:1.30:*:*:*:*:*:*:*",
"matchCriteriaId": "7D89D626-7E88-40B7-A0E7-4203A1F02707",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:whr-am54g54_firmware:1.38:*:*:*:*:*:*:*",
"matchCriteriaId": "EC76621E-A848-41B0-846E-9B74B06EBCF7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:whr-am54g54_firmware:1.40:*:*:*:*:*:*:*",
"matchCriteriaId": "346498AF-D57B-485C-B961-F736C9A3E2C9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:whr-am54g54_firmware:1.42:*:*:*:*:*:*:*",
"matchCriteriaId": "7E4F02E9-CE85-4504-850F-0B76B6C7ECC9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:whr-amg54_firmware:1.31:*:*:*:*:*:*:*",
"matchCriteriaId": "B37F2AA8-AC5D-49D3-B386-7C40FA04C90C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:whr-amg54_firmware:1.38:*:*:*:*:*:*:*",
"matchCriteriaId": "3E19983F-A714-451F-9FB4-09BB85442961",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:whr-amg54_firmware:1.40:*:*:*:*:*:*:*",
"matchCriteriaId": "351A3501-E637-4B8D-B10B-9FEF2BDEE349",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:whr-amg54_firmware:1.42:*:*:*:*:*:*:*",
"matchCriteriaId": "9FD911F3-5660-4FF3-AC96-9119E30EFA3A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:whr-ampg_firmware:1.46:*:*:*:*:*:*:*",
"matchCriteriaId": "BC7D1850-E4DA-43FA-B21D-E77922CE2940",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:whr-g_firmware:1.46:*:*:*:*:*:*:*",
"matchCriteriaId": "52C1F391-6E05-406C-B771-B377E669B394",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:whr-g54s_firmware:1.20:*:*:*:*:*:*:*",
"matchCriteriaId": "33224A42-849E-4A0C-BAA9-CA90D5CB910D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:whr-g54s_firmware:1.21:*:*:*:*:*:*:*",
"matchCriteriaId": "B4C8511E-33E1-4879-B7C7-6EA8AA1FF733",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:whr-g54s_firmware:1.23:*:*:*:*:*:*:*",
"matchCriteriaId": "B984D4DA-1A40-46FB-AE80-31D22E789D07",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:whr-g54s_firmware:1.38:*:*:*:*:*:*:*",
"matchCriteriaId": "0A490DDF-A3C9-4B24-8E86-E80EC07556E7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:whr-g54s_firmware:1.40:*:*:*:*:*:*:*",
"matchCriteriaId": "89B20789-BF24-401F-ABF2-2D36B2678BF3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:whr-g54s_firmware:1.42:*:*:*:*:*:*:*",
"matchCriteriaId": "BB6857EF-CF12-4436-90EC-D98F0A6206C2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:whr-hp-ampg_firmware:1.32:*:*:*:*:*:*:*",
"matchCriteriaId": "A8394C7A-FCF0-421F-8F0F-FEC41606B7D8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:whr-hp-g_firmware:1.46:*:*:*:*:*:*:*",
"matchCriteriaId": "5297F37E-4FEF-4637-B742-5A68FB807B03",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:whr-hp-g54_firmware:1.20:*:*:*:*:*:*:*",
"matchCriteriaId": "51C86D19-2BEF-49D8-9112-AF77C24E5634",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:whr-hp-g54_firmware:1.21:*:*:*:*:*:*:*",
"matchCriteriaId": "D4FD5667-9FA9-4BF5-A91D-AF914CCCA941",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:whr-hp-g54_firmware:1.23:*:*:*:*:*:*:*",
"matchCriteriaId": "10E2F63B-AD4D-49F9-897D-F8B92A7BD50F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:whr-hp-g54_firmware:1.38:*:*:*:*:*:*:*",
"matchCriteriaId": "ABF875DE-04D5-458C-A5A6-6D729C20B0FF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:whr-hp-g54_firmware:1.40:*:*:*:*:*:*:*",
"matchCriteriaId": "3D4B5C19-97BE-4DEF-86FF-0514D0CB1CB5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:whr-hp-g54_firmware:1.42:*:*:*:*:*:*:*",
"matchCriteriaId": "C5479842-B556-49AB-9133-3ABB1E0AC0AC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:wzr-ampg144nh_firmware:1.47:*:*:*:*:*:*:*",
"matchCriteriaId": "11E8CFE2-4DCB-42A2-9ADF-B980B3DB6467",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:wzr-ampg144nh_firmware:1.48:beta:*:*:*:*:*:*",
"matchCriteriaId": "4D9C7258-672D-46AC-970A-CAC50E225DC9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:wzr-ampg300nh_firmware:1.48:*:*:*:*:*:*:*",
"matchCriteriaId": "24E1DE14-D26B-4E83-9B32-C3EBFBF5D459",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:wzr-g144n_firmware:1.45:*:*:*:*:*:*:*",
"matchCriteriaId": "B3757E3B-B749-4058-B4DC-F6AEFEBB9081",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:wzr-g144n_firmware:1.46:beta:*:*:*:*:*:*",
"matchCriteriaId": "5281E335-4E03-439C-A89B-E9F126D3BDF0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:wzr-g144n_firmware:1.47:*:*:*:*:*:*:*",
"matchCriteriaId": "40BEAA53-A26C-4E23-8058-3BF376366FD0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:wzr-g144n_firmware:1.47:beta:*:*:*:*:*:*",
"matchCriteriaId": "538F2CC1-E337-47D9-846D-B4C51C2B1C8F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:wzr-g144nh_firmware:1.45:*:*:*:*:*:*:*",
"matchCriteriaId": "02108C83-C6E0-4620-8085-FD4EB7E52E4F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:wzr-g144nh_firmware:1.47:*:*:*:*:*:*:*",
"matchCriteriaId": "6E0E319B-241E-4B9E-8AFC-E050B65F808E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:wzr-g144nh_firmware:1.47:beta:*:*:*:*:*:*",
"matchCriteriaId": "74549536-D671-4CA3-A090-869BE136E62C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:wzr-g144nh_firmware:1.48:*:*:*:*:*:*:*",
"matchCriteriaId": "6343A3F0-E749-4AFB-8D4F-D5A80930010C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:wzr2-g300n_firmware:1.48:*:*:*:*:*:*:*",
"matchCriteriaId": "34EBD114-AE1B-4413-B3B4-E238721418A2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:buffalotech:wzr2-g300n_firmware:1.50:beta:*:*:*:*:*:*",
"matchCriteriaId": "DC84BA91-3215-4B62-BF09-8D4E5C966867",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:buffalotech:as-100:*:*:*:*:*:*:*:*",
"matchCriteriaId": "B26A678B-A3CF-43DD-BA03-A5A3ED7FACBB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:buffalotech:bbr-4hg:*:*:*:*:*:*:*:*",
"matchCriteriaId": "31287FFB-C8E9-4B58-904B-38324C6E6D36",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:buffalotech:bbr-4mg:*:*:*:*:*:*:*:*",
"matchCriteriaId": "15AC14CD-77BD-4F0B-B06D-D3006BD72EFE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:buffalotech:bhr-4rv:*:*:*:*:*:*:*:*",
"matchCriteriaId": "E7DFB8C7-3E66-475B-8361-86141EC6A355",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:buffalotech:fs-g54:*:*:*:*:*:*:*:*",
"matchCriteriaId": "0F81801C-4F32-426C-9624-9BBFCA73D65F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:buffalotech:wer-a54g54:*:*:*:*:*:*:*:*",
"matchCriteriaId": "FEFCA340-FF4F-4900-9D6E-890D90F980EB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:buffalotech:wer-ag54:*:*:*:*:*:*:*:*",
"matchCriteriaId": "92B63D21-82F2-49A7-8D48-98320157BF61",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:buffalotech:wer-am54g54:*:*:*:*:*:*:*:*",
"matchCriteriaId": "2BDE90A1-B9F5-4536-B665-65DB5C3F578D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:buffalotech:wer-amg54:*:*:*:*:*:*:*:*",
"matchCriteriaId": "6495B013-8379-4E4E-BC2B-4C5666326D08",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:buffalotech:whr-am54g54:*:*:*:*:*:*:*:*",
"matchCriteriaId": "6524837A-065A-4908-B12B-167092E9BA15",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:buffalotech:whr-amg54:*:*:*:*:*:*:*:*",
"matchCriteriaId": "D7A4B00C-36C8-4359-ADAE-052154094D81",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:buffalotech:whr-ampg:*:*:*:*:*:*:*:*",
"matchCriteriaId": "4146B285-E9BD-4B32-B60C-273717876D97",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:buffalotech:whr-g:*:*:*:*:*:*:*:*",
"matchCriteriaId": "68C930E7-51C6-49A0-9064-B47C4454E9C4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:buffalotech:whr-g54s:*:*:*:*:*:*:*:*",
"matchCriteriaId": "0886A676-65BE-4D2E-81B9-0749674D4EE8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:buffalotech:whr-hp-ampg:*:*:*:*:*:*:*:*",
"matchCriteriaId": "82B8B5BF-B38E-4314-8BFE-86CF9F24F271",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:buffalotech:whr-hp-g:*:*:*:*:*:*:*:*",
"matchCriteriaId": "00798A1A-CD00-4DCE-AB19-DA9FC403ACA6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:buffalotech:whr-hp-g54:*:*:*:*:*:*:*:*",
"matchCriteriaId": "E8C3B2AC-DE14-4C91-9B26-8A4D8AFE795E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:buffalotech:wzr-ampg144nh:*:*:*:*:*:*:*:*",
"matchCriteriaId": "FC05429F-860D-48E6-BE25-455EE07526AE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:buffalotech:wzr-ampg300nh:*:*:*:*:*:*:*:*",
"matchCriteriaId": "5194AA8B-F68E-45D9-AEA1-F4265B9A892F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:buffalotech:wzr-g144n:*:*:*:*:*:*:*:*",
"matchCriteriaId": "10996A6A-F2A4-4C21-9DB9-475A57AAC487",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:buffalotech:wzr-g144nh:*:*:*:*:*:*:*:*",
"matchCriteriaId": "50839C21-9116-49E3-8817-AB29A0FF2202",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:buffalotech:wzr2-g300n:*:*:*:*:*:*:*:*",
"matchCriteriaId": "619025B8-3880-4763-BD10-4CD89AF43618",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Multiple cross-site request forgery (CSRF) vulnerabilities in the management screen on Buffalo WHR, WZR2, WZR, WER, and BBR series routers with firmware 1.x; BHR-4RV and FS-G54 routers with firmware 2.x; and AS-100 routers allow remote attackers to hijack the authentication of administrators for requests that modify settings, as demonstrated by changing the login password."
},
{
"lang": "es",
"value": "M\u00faltiples vulnerabilidades de falsificaci\u00f3n de petici\u00f3n en sitios cruzados (CSRF) en las Pantallas de gesti\u00f3n de las series WHR, WZR2, WZR, WER, y BBR de routers Buffalo con firmware v1.x; routers BHR-4RV y FS-G54 con firmware 2.x; y routers AS-100, permite a atacantes remotos secuestrar la autenticaci\u00f3n de los administradores para peticiones que modifican la configuraci\u00f3n como se demuestra con el cambio de la contrase\u00f1a login.\r\n"
}
],
"id": "CVE-2011-1324",
"lastModified": "2025-04-11T00:51:21.963",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.8,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 4.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": true
}
]
},
"published": "2011-05-09T19:55:03.507",
"references": [
{
"source": "vultures@jpcert.or.jp",
"url": "http://buffalo.jp/support_s/20080808/csrf.html"
},
{
"source": "vultures@jpcert.or.jp",
"url": "http://jvn.jp/en/jp/JVN50505257/index.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://buffalo.jp/support_s/20080808/csrf.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://jvn.jp/en/jp/JVN50505257/index.html"
}
],
"sourceIdentifier": "vultures@jpcert.or.jp",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-352"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…