CVE-2016-4815 - Vulnerability Details

Vendors	Products
Buffalo	Wzr-600dhp2 Wzr-600dhp2 Firmware Wzr-600dhp3 Wzr-600dhp3 Firmware Wzr-900dhp Wzr-900dhp2 Wzr-900dhp2 Firmware Wzr-900dhp Firmware Wzr-s600dhp Wzr-s600dhp Firmware Wzr-s900dhp Wzr-s900dhp Firmware

Link	Providers
http://buffalo.jp/support_s/s20160527b.html
http://jvn.jp/en/jp/JVN81698369/index.html
http://jvndb.jvn.jp/jvndb/JVNDB-2016-000086

Show plain JSON

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2016-05-27T00:00:00", "descriptions": [{"lang": "en", "value": "Directory traversal vulnerability on BUFFALO WZR-600DHP3 devices with firmware 2.16 and earlier and WZR-S600DHP devices with firmware 2.16 and earlier allows remote attackers to read arbitrary files via unspecified vectors."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2016-06-19T01:57:01", "orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce", "shortName": "jpcert"}, "references": [{"name": "JVN#81698369", "tags": ["third-party-advisory", "x_refsource_JVN"], "url": "http://jvn.jp/en/jp/JVN81698369/index.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://buffalo.jp/support_s/s20160527b.html"}, {"name": "JVNDB-2016-000086", "tags": ["third-party-advisory", "x_refsource_JVNDB"], "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2016-000086"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "vultures@jpcert.or.jp", "ID": "CVE-2016-4815", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Directory traversal vulnerability on BUFFALO WZR-600DHP3 devices with firmware 2.16 and earlier and WZR-S600DHP devices with firmware 2.16 and earlier allows remote attackers to read arbitrary files via unspecified vectors."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "JVN#81698369", "refsource": "JVN", "url": "http://jvn.jp/en/jp/JVN81698369/index.html"}, {"name": "http://buffalo.jp/support_s/s20160527b.html", "refsource": "CONFIRM", "url": "http://buffalo.jp/support_s/s20160527b.html"}, {"name": "JVNDB-2016-000086", "refsource": "JVNDB", "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2016-000086"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T00:39:26.205Z"}, "title": "CVE Program Container", "references": [{"name": "JVN#81698369", "tags": ["third-party-advisory", "x_refsource_JVN", "x_transferred"], "url": "http://jvn.jp/en/jp/JVN81698369/index.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://buffalo.jp/support_s/s20160527b.html"}, {"name": "JVNDB-2016-000086", "tags": ["third-party-advisory", "x_refsource_JVNDB", "x_transferred"], "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2016-000086"}]}]}, "cveMetadata": {"assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce", "assignerShortName": "jpcert", "cveId": "CVE-2016-4815", "datePublished": "2016-06-19T01:00:00", "dateReserved": "2016-05-17T00:00:00", "dateUpdated": "2024-08-06T00:39:26.205Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{

containers : { »

cna : { »

affected : [ »

0 : { »

product : n/a (string)

vendor : n/a (string)

versions : [ »

0 : { »

status : affected (string)

version : n/a (string)

}

]

}

]

datePublic : 2016-05-27T00:00:00 (string)

descriptions : [ »

0 : { »

lang : en (string)

value : Directory traversal vulnerability on BUFFALO WZR-600DHP3 devices with firmware 2.16 and earlier and WZR-S600DHP devices with firmware 2.16 and earlier allows remote attackers to read arbitrary files via unspecified vectors. (string)

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

description : n/a (string)

lang : en (string)

type : text (string)

}

]

}

]

providerMetadata : { »

dateUpdated : 2016-06-19T01:57:01 (string)

orgId : ede6fdc4-6654-4307-a26d-3331c018e2ce (string)

shortName : jpcert (string)

}

references : [ »

0 : { »

name : JVN#81698369 (string)

tags : [ »

0 : third-party-advisory (string)

1 : x_refsource_JVN (string)

]

url : http://jvn.jp/en/jp/JVN81698369/index.html (string)

}

1 : { »

tags : [ »

0 : x_refsource_CONFIRM (string)

]

url : http://buffalo.jp/support_s/s20160527b.html (string)

}

2 : { »

name : JVNDB-2016-000086 (string)

tags : [ »

0 : third-party-advisory (string)

1 : x_refsource_JVNDB (string)

]

url : http://jvndb.jvn.jp/jvndb/JVNDB-2016-000086 (string)

}

]

x_legacyV4Record : { »

CVE_data_meta : { »

ASSIGNER : vultures@jpcert.or.jp (string)

ID : CVE-2016-4815 (string)

STATE : PUBLIC (string)

}

affects : { »

vendor : { »

vendor_data : [ »

0 : { »

product : { »

product_data : [ »

0 : { »

product_name : n/a (string)

version : { »

version_data : [ »

0 : { »

version_value : n/a (string)

}

]

}

]

}

vendor_name : n/a (string)

}

]

}

data_format : MITRE (string)

data_type : CVE (string)

data_version : 4.0 (string)

description : { »

description_data : [ »

0 : { »

lang : eng (string)

value : Directory traversal vulnerability on BUFFALO WZR-600DHP3 devices with firmware 2.16 and earlier and WZR-S600DHP devices with firmware 2.16 and earlier allows remote attackers to read arbitrary files via unspecified vectors. (string)

}

]

}

problemtype : { »

problemtype_data : [ »

0 : { »

description : [ »

0 : { »

lang : eng (string)

value : n/a (string)

}

]

}

]

}

references : { »

reference_data : [ »

0 : { »

name : JVN#81698369 (string)

refsource : JVN (string)

url : http://jvn.jp/en/jp/JVN81698369/index.html (string)

}

1 : { »

name : http://buffalo.jp/support_s/s20160527b.html (string)

refsource : CONFIRM (string)

url : http://buffalo.jp/support_s/s20160527b.html (string)

}

2 : { »

name : JVNDB-2016-000086 (string)

refsource : JVNDB (string)

url : http://jvndb.jvn.jp/jvndb/JVNDB-2016-000086 (string)

}

]

}

adp : [ »

0 : { »

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-06T00:39:26.205Z (string)

}

title : CVE Program Container (string)

references : [ »

0 : { »

name : JVN#81698369 (string)

tags : [ »

0 : third-party-advisory (string)

1 : x_refsource_JVN (string)

2 : x_transferred (string)

]

url : http://jvn.jp/en/jp/JVN81698369/index.html (string)

}

1 : { »

tags : [ »

0 : x_refsource_CONFIRM (string)

1 : x_transferred (string)

]

url : http://buffalo.jp/support_s/s20160527b.html (string)

}

2 : { »

name : JVNDB-2016-000086 (string)

tags : [ »

0 : third-party-advisory (string)

1 : x_refsource_JVNDB (string)

2 : x_transferred (string)

]

url : http://jvndb.jvn.jp/jvndb/JVNDB-2016-000086 (string)

}

]

}

]

}

cveMetadata : { »

assignerOrgId : ede6fdc4-6654-4307-a26d-3331c018e2ce (string)

assignerShortName : jpcert (string)

cveId : CVE-2016-4815 (string)

datePublished : 2016-06-19T01:00:00 (string)

dateReserved : 2016-05-17T00:00:00 (string)

dateUpdated : 2024-08-06T00:39:26.205Z (string)

state : PUBLISHED (string)

}

dataType : CVE_RECORD (string)

dataVersion : 5.1 (string)

}

Show plain JSON

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:wzr-900dhp2:-:*:*:*:*:*:*:*", "matchCriteriaId": "247B99DF-EE96-40C3-89FC-706DE878ABFE", "vulnerable": false}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:wzr-900dhp2_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "69F8C9DD-2F18-4A53-83B6-28203376C5F1", "versionEndIncluding": "2.16", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:wzr-600dhp3:-:*:*:*:*:*:*:*", "matchCriteriaId": "303225E6-81C0-4A2F-81A3-51E508DDA0EE", "vulnerable": false}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:wzr-600dhp3_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "D7A7ED42-5F7F-4597-BE1F-4CA63EDC5069", "versionEndIncluding": "2.16", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:wzr-s900dhp:-:*:*:*:*:*:*:*", "matchCriteriaId": "C7C186F6-8DE5-4C82-8403-D3BB76069FCE", "vulnerable": false}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:wzr-s900dhp_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "05D10EE2-C4A9-42D0-9861-4E91FBF22327", "versionEndIncluding": "2.16", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:wzr-s600dhp:-:*:*:*:*:*:*:*", "matchCriteriaId": "75434B7A-2633-4981-B99D-33448883BC61", "vulnerable": false}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:wzr-s600dhp_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "59915998-08D7-4FFC-B240-09F8EA216B1E", "versionEndIncluding": "2.16", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:wzr-900dhp:-:*:*:*:*:*:*:*", "matchCriteriaId": "B8BD47F3-29D0-4B34-A346-C0042FBD75ED", "vulnerable": false}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:wzr-900dhp_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "F0D917DA-1562-471B-97AF-81C4E58E4CD8", "versionEndIncluding": "1.11", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:buffalo:wzr-600dhp2:-:*:*:*:*:*:*:*", "matchCriteriaId": "9271B665-2267-4C24-92FD-B1CBCB2F0F59", "vulnerable": false}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:buffalo:wzr-600dhp2_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "79ECCA31-34CB-4B1E-931C-752AB6E6CAD8", "versionEndIncluding": "1.13", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Directory traversal vulnerability on BUFFALO WZR-600DHP3 devices with firmware 2.16 and earlier and WZR-S600DHP devices with firmware 2.16 and earlier allows remote attackers to read arbitrary files via unspecified vectors."}, {"lang": "es", "value": "Vulnerabilidad de salto de directorio en dispositivos BUFFALO WZR-600DHP3 con firmware 2.16 y versiones anteriores y dispositivos WZR-S600DHP con firmware 2.16 y versiones anteriores permite a atacantes remotos leer archivos arbitrarios a trav\u00e9s de vectores no especificados."}], "id": "CVE-2016-4815", "lastModified": "2025-04-12T10:46:40.837", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.0"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2016-06-19T01:59:10.030", "references": [{"source": "vultures@jpcert.or.jp", "tags": ["Patch", "Vendor Advisory"], "url": "http://buffalo.jp/support_s/s20160527b.html"}, {"source": "vultures@jpcert.or.jp", "tags": ["Vendor Advisory"], "url": "http://jvn.jp/en/jp/JVN81698369/index.html"}, {"source": "vultures@jpcert.or.jp", "tags": ["Vendor Advisory"], "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2016-000086"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://buffalo.jp/support_s/s20160527b.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://jvn.jp/en/jp/JVN81698369/index.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2016-000086"}], "sourceIdentifier": "vultures@jpcert.or.jp", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-22"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{

configurations : [ »

0 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:buffalo:wzr-900dhp2:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 247B99DF-EE96-40C3-89FC-706DE878ABFE (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:buffalo:wzr-900dhp2_firmware:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 69F8C9DD-2F18-4A53-83B6-28203376C5F1 (string)

versionEndIncluding : 2.16 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

1 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:buffalo:wzr-600dhp3:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 303225E6-81C0-4A2F-81A3-51E508DDA0EE (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:buffalo:wzr-600dhp3_firmware:*:*:*:*:*:*:*:* (string)

matchCriteriaId : D7A7ED42-5F7F-4597-BE1F-4CA63EDC5069 (string)

versionEndIncluding : 2.16 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

2 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:buffalo:wzr-s900dhp:-:*:*:*:*:*:*:* (string)

matchCriteriaId : C7C186F6-8DE5-4C82-8403-D3BB76069FCE (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:buffalo:wzr-s900dhp_firmware:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 05D10EE2-C4A9-42D0-9861-4E91FBF22327 (string)

versionEndIncluding : 2.16 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

3 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:buffalo:wzr-s600dhp:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 75434B7A-2633-4981-B99D-33448883BC61 (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:buffalo:wzr-s600dhp_firmware:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 59915998-08D7-4FFC-B240-09F8EA216B1E (string)

versionEndIncluding : 2.16 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

4 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:buffalo:wzr-900dhp:-:*:*:*:*:*:*:* (string)

matchCriteriaId : B8BD47F3-29D0-4B34-A346-C0042FBD75ED (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:buffalo:wzr-900dhp_firmware:*:*:*:*:*:*:*:* (string)

matchCriteriaId : F0D917DA-1562-471B-97AF-81C4E58E4CD8 (string)

versionEndIncluding : 1.11 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

5 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:buffalo:wzr-600dhp2:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 9271B665-2267-4C24-92FD-B1CBCB2F0F59 (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:buffalo:wzr-600dhp2_firmware:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 79ECCA31-34CB-4B1E-931C-752AB6E6CAD8 (string)

versionEndIncluding : 1.13 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

]

cveTags : [ *empty* ]

descriptions : [ »

0 : { »

lang : en (string)

value : Directory traversal vulnerability on BUFFALO WZR-600DHP3 devices with firmware 2.16 and earlier and WZR-S600DHP devices with firmware 2.16 and earlier allows remote attackers to read arbitrary files via unspecified vectors. (string)

}

1 : { »

lang : es (string)

value : Vulnerabilidad de salto de directorio en dispositivos BUFFALO WZR-600DHP3 con firmware 2.16 y versiones anteriores y dispositivos WZR-S600DHP con firmware 2.16 y versiones anteriores permite a atacantes remotos leer archivos arbitrarios a través de vectores no especificados. (string)

}

]

id : CVE-2016-4815 (string)

lastModified : 2025-04-12T10:46:40.837 (string)

metrics : { »

cvssMetricV2 : [ »

0 : { »

acInsufInfo : false (boolean)

baseSeverity : MEDIUM (string)

cvssData : { »

accessComplexity : LOW (string)

accessVector : NETWORK (string)

authentication : NONE (string)

availabilityImpact : NONE (string)

baseScore : 5 (number)

confidentialityImpact : PARTIAL (string)

integrityImpact : NONE (string)

vectorString : AV:N/AC:L/Au:N/C:P/I:N/A:N (string)

version : 2.0 (string)

}

exploitabilityScore : 10 (number)

impactScore : 2.9 (number)

obtainAllPrivilege : false (boolean)

obtainOtherPrivilege : false (boolean)

obtainUserPrivilege : false (boolean)

source : nvd@nist.gov (string)

type : Primary (string)

userInteractionRequired : false (boolean)

}

]

cvssMetricV30 : [ »

0 : { »

cvssData : { »

attackComplexity : LOW (string)

attackVector : NETWORK (string)

availabilityImpact : NONE (string)

baseScore : 7.5 (number)

baseSeverity : HIGH (string)

confidentialityImpact : HIGH (string)

integrityImpact : NONE (string)

privilegesRequired : NONE (string)

scope : UNCHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N (string)

version : 3.0 (string)

}

exploitabilityScore : 3.9 (number)

impactScore : 3.6 (number)

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

published : 2016-06-19T01:59:10.030 (string)

references : [ »

0 : { »

source : vultures@jpcert.or.jp (string)

tags : [ »

0 : Patch (string)

1 : Vendor Advisory (string)

]

url : http://buffalo.jp/support_s/s20160527b.html (string)

}

1 : { »

source : vultures@jpcert.or.jp (string)

tags : [ »

0 : Vendor Advisory (string)

]

url : http://jvn.jp/en/jp/JVN81698369/index.html (string)

}

2 : { »

source : vultures@jpcert.or.jp (string)

tags : [ »

0 : Vendor Advisory (string)

]

url : http://jvndb.jvn.jp/jvndb/JVNDB-2016-000086 (string)

}

3 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Patch (string)

1 : Vendor Advisory (string)

]

url : http://buffalo.jp/support_s/s20160527b.html (string)

}

4 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Vendor Advisory (string)

]

url : http://jvn.jp/en/jp/JVN81698369/index.html (string)

}

5 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Vendor Advisory (string)

]

url : http://jvndb.jvn.jp/jvndb/JVNDB-2016-000086 (string)

}

]

sourceIdentifier : vultures@jpcert.or.jp (string)

vulnStatus : Deferred (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-22 (string)

}

]

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

Affected Vendors & Products

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object