This page lists publicly disclosed CVE vulnerabilities affecting buffalo vr-u500x_firmware (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2026-33366 | Missing authentication for critical function vulnerability in BUFFALO Wi-Fi router products may allow an attacker to forcibly reboot the product without authentication. | [email protected] | 6.9 | 0.34% | 2026-03-27 | 2026-06-17 |
| CVE-2026-33280 | Hidden functionality issue exists in BUFFALO Wi-Fi router products, which may allow an attacker to gain access to the product’s debugging functionality, resulting in the execution of arbitrary OS commands. | [email protected] | 8.6 | 0.38% | 2026-03-27 | 2026-06-17 |
| CVE-2026-32678 | Authentication bypass issue exists in BUFFALO Wi-Fi router products, which may allow an attacker to alter critical configuration settings without authentication. | [email protected] | 8.7 | 0.32% | 2026-03-27 | 2026-06-17 |
| CVE-2026-32669 | Code injection vulnerability exists in BUFFALO Wi-Fi router products. If this vulnerability is exploited, an arbitrary code may be executed on the products. | [email protected] | 8.7 | 0.27% | 2026-03-27 | 2026-06-17 |
| CVE-2026-27650 | OS Command Injection vulnerability exists in BUFFALO Wi-Fi router products. If this vulnerability is exploited, an arbitrary OS command may be executed on the products. | [email protected] | 8.6 | 0.92% | 2026-03-27 | 2026-06-17 |