Wzr-900dhp firmware
This hub aggregates every CVE we track for Wzr-900dhp firmware, a product in the networking infrastructure space. Use it to gauge the current risk picture and drill into individual advisories.
10
CVEs tracked
3
Critical
3
High
0
In CISA KEV
Severity distribution
MEDIUM4HIGH3CRITICAL3
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
5
0
0
0
2024-072026-06
Latest CVEs
The 10 most recently published vulnerabilities affecting Wzr-900dhp firmware.
- CVE-2026-33366Missing authentication for critical function vulnerability in BUFFALO Wi-Fi router products may allow an attacker to forcibly reboot the product without authentication.5.3
- CVE-2026-33280Hidden functionality issue exists in BUFFALO Wi-Fi router products, which may allow an attacker to gain access to the product’s debugging functionality, resulting in the execution of arbitrary OS...9.8
- CVE-2026-32678Authentication bypass issue exists in BUFFALO Wi-Fi router products, which may allow an attacker to alter critical configuration settings without authentication.7.5
- CVE-2026-32669Code injection vulnerability exists in BUFFALO Wi-Fi router products. If this vulnerability is exploited, an arbitrary code may be executed on the products.9.8
- CVE-2026-27650OS Command Injection vulnerability exists in BUFFALO Wi-Fi router products. If this vulnerability is exploited, an arbitrary OS command may be executed on the products.9.8
- CVE-2022-40966Authentication bypass vulnerability in multiple Buffalo network devices allows a network-adjacent attacker to bypass authentication and access the device. The affected products/versions are as foll...8.8
- CVE-2022-39044Hidden functionality vulnerability in multiple Buffalo network devices allows a network-adjacent attacker with an administrative privilege to execute an arbitrary OS command. The affected products/...6.8
- CVE-2022-34840Use of hard-coded credentials vulnerability in multiple Buffalo network devices allows a network-adjacent attacker to alter?configuration settings of the device. The affected products/versions are ...6.5
- CVE-2016-4816BUFFALO WZR-600DHP3 devices with firmware 2.16 and earlier and WZR-S600DHP devices allow remote attackers to discover credentials and other sensitive information via unspecified vectors.6.5
- CVE-2016-4815Directory traversal vulnerability on BUFFALO WZR-600DHP3 devices with firmware 2.16 and earlier and WZR-S600DHP devices with firmware 2.16 and earlier allows remote attackers to read arbitrary file...7.5
Product normalization is registry-driven with AI assist and human review. How it works