CVE-2018-13321

Incorrect access controls in nasapi in Buffalo TS5600D1206 version 3.61-0.10 allow attackers to call dangerous internal functions via the "method" parameter.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:buffalo:ts5600d1206_firmware:3.61-0.10:*:*:*:*:*:*:*
cpe:2.3:h:buffalo:ts5600d1206:-:*:*:*:*:*:*:*

History

21 Nov 2024, 03:46

Type Values Removed Values Added
References () https://blog.securityevaluators.com/buffalo-terastation-ts5600d1206-nas-cve-disclosure-ab5d159f036d - Exploit, Third Party Advisory () https://blog.securityevaluators.com/buffalo-terastation-ts5600d1206-nas-cve-disclosure-ab5d159f036d - Exploit, Third Party Advisory

Information

Published : 2018-11-26 23:29

Updated : 2024-11-21 03:46


NVD link : CVE-2018-13321

Mitre link : CVE-2018-13321

CVE.ORG link : CVE-2018-13321


JSON object : View

Products Affected

buffalo

  • ts5600d1206_firmware
  • ts5600d1206
CWE
CWE-732

Incorrect Permission Assignment for Critical Resource