CVE-2017-10896

Summary

Cross-site scripting vulnerability in Buffalo BBR-4HG and and BBR-4MG broadband routers with firmware 1.00 to 1.48 and 2.00 to 2.07 allows an attacker to inject arbitrary web script or HTML via unspecified vectors.

Affected Software

VendorProductVersion RangeStatus
BUFFALO INC.BBR-4HGfirmware 1.00 to 1.48affected
BUFFALO INC.BBR-4HGfirmware 2.00 to 2.07affected
BUFFALO INC.BBR-4MGfirmware 1.00 to 1.48affected
BUFFALO INC.BBR-4MGfirmware 2.00 to 2.07affected

Weaknesses

  • Cross-site scripting

ADP Enrichment

CVE Program Container

Additional References

References