CVE-2021-3511
First published: Wed Apr 28 2021(Updated: )
Disclosure of sensitive information to an unauthorized user vulnerability in Buffalo broadband routers (BHR-4GRV firmware Ver.1.99 and prior, DWR-HP-G300NH firmware Ver.1.83 and prior, HW-450HP-ZWE firmware Ver.1.99 and prior, WHR-300HP firmware Ver.1.99 and prior, WHR-300 firmware Ver.1.99 and prior, WHR-G301N firmware Ver.1.86 and prior, WHR-HP-G300N firmware Ver.1.99 and prior, WHR-HP-GN firmware Ver.1.86 and prior, WPL-05G300 firmware Ver.1.87 and prior, WZR-450HP-CWT firmware Ver.1.99 and prior, WZR-450HP-UB firmware Ver.1.99 and prior, WZR-HP-AG300H firmware Ver.1.75 and prior, WZR-HP-G300NH firmware Ver.1.83 and prior, WZR-HP-G301NH firmware Ver.1.83 and prior, WZR-HP-G302H firmware Ver.1.85 and prior, WZR-HP-G450H firmware Ver.1.89 and prior, WZR-300HP firmware Ver.1.99 and prior, WZR-450HP firmware Ver.1.99 and prior, WZR-600DHP firmware Ver.1.99 and prior, WZR-D1100H firmware Ver.1.99 and prior, FS-HP-G300N firmware Ver.3.32 and prior, FS-600DHP firmware Ver.3.38 and prior, FS-R600DHP firmware Ver.3.39 and prior, and FS-G300N firmware Ver.3.13 and prior) allows remote unauthenticated attackers to obtain information such as configuration via unspecified vectors.
Credit: vultures@jpcert.or.jp
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Arcadyan Buffalo Firmware | <2.00 | |
| Buffalo BHR-4GRV firmware | ||
| Buffalo DWR-HP-G300NH | <1.84 | |
| Buffalo DWR-HP-G300NH firmware | ||
| Buffalo HW-450HP-ZWE | <2.00 | |
| Buffalo HW-450HP-ZWE firmware | ||
| Buffalo WHR-300HP firmware | <2.00 | |
| Buffalo WHR-300HP2 | ||
| Arcadyan Buffalo Firmware | <2.00 | |
| Buffalo WHR-300 | ||
| Buffalo WHR-G301N | <1.87 | |
| Buffalo WHR-G301N firmware | ||
| Buffalo WHR-HP-G300N | <2.00 | |
| Buffalo WHR-HP-G300N firmware | ||
| Buffalo WHR-HP-GN Firmware | <1.87 | |
| Buffalo WHR-HP-GN firmware | ||
| Buffalo WPL-05G300 | <1.88 | |
| Buffalo WPL-05G300 firmware | ||
| Buffalo WZR-450HP | <2.00 | |
| Buffalo WZR-450HP | ||
| Buffalo WZR-450HP firmware | <2.00 | |
| Buffalo WZR-450HP-UB firmware | ||
| Buffalo WZR-HP-AG300H | <1.76 | |
| Buffalo WZR-HP-AG300H firmware | ||
| Buffalo WZR-HP-G300NH firmware | <1.84 | |
| Buffalo WZR-HP-G300NH firmware | ||
| Buffalo WZR-HP-G301NH | <1.84 | |
| Buffalo WZR-HP-G301NH firmware | ||
| Buffalo WZR-HP-G302H | <1.86 | |
| Buffalo WZR-HP-G302H firmware | ||
| Buffalo WZR-HP-G450H | <1.90 | |
| Buffalo WZR-HP-G450H firmware | ||
| Buffalo WZR-300HP firmware | <2.00 | |
| Buffalo WZR-300HP firmware | ||
| Buffalo WZR-450HP | <2.00 | |
| Buffalo WZR-450HP firmware | ||
| Buffalo WZR-600DHP firmware | <2.00 | |
| BUFFALO wireless LAN routers | ||
| Buffalo WZR-D1100H | <2.00 | |
| Buffalo WZR-D1100H firmware | ||
| Buffalo FS-HP-G300N firmware | <3.33 | |
| Buffalo FS-HP-G300N firmware | ||
| Arcadyan Buffalo Firmware | <3.40 | |
| Buffalo FS-600DHP firmware | ||
| Buffalo FS-R600DHP | <3.40 | |
| Buffalo FS-R600DHP firmware | ||
| Buffalo FS-G300N | <3.14 | |
| Buffalo FS-G300N firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of this Buffalo broadband router vulnerability?
The vulnerability ID is CVE-2021-3511.
What is the severity level of CVE-2021-3511?
The severity level of CVE-2021-3511 is medium.
Which Buffalo broadband routers are affected by CVE-2021-3511?
Buffalo BHR-4GRV firmware Ver.1.99 and prior, DWR-HP-G300NH firmware Ver.1.83 and prior, HW-450HP-ZWE firmware Ver.1.99 and prior, WHR-300HP firmware Ver.1.99 and prior, WHR-300 firmware Ver.1.99 and prior are affected by CVE-2021-3511.
What is the risk of CVE-2021-3511?
CVE-2021-3511 poses a risk of disclosure of sensitive information to an unauthorized user.
Where can I find more information about CVE-2021-3511?
You can find more information about CVE-2021-3511 on the JVN and Buffalo websites.
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/author
- agent/last-modified-date
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/buffalo
- canonical/arcadyan buffalo firmware
- canonical/buffalo bhr-4grv firmware
- canonical/buffalo dwr-hp-g300nh
- canonical/buffalo dwr-hp-g300nh firmware
- canonical/buffalo hw-450hp-zwe
- canonical/buffalo hw-450hp-zwe firmware
- canonical/buffalo whr-300hp firmware
- canonical/buffalo whr-300hp2
- canonical/buffalo whr-300
- canonical/buffalo whr-g301n
- canonical/buffalo whr-g301n firmware
- canonical/buffalo whr-hp-g300n
- canonical/buffalo whr-hp-g300n firmware
- canonical/buffalo whr-hp-gn firmware
- canonical/buffalo wpl-05g300
- canonical/buffalo wpl-05g300 firmware
- canonical/buffalo wzr-450hp
- canonical/buffalo wzr-450hp firmware
- canonical/buffalo wzr-450hp-ub firmware
- canonical/buffalo wzr-hp-ag300h
- canonical/buffalo wzr-hp-ag300h firmware
- canonical/buffalo wzr-hp-g300nh firmware
- canonical/buffalo wzr-hp-g301nh
- canonical/buffalo wzr-hp-g301nh firmware
- canonical/buffalo wzr-hp-g302h
- canonical/buffalo wzr-hp-g302h firmware
- canonical/buffalo wzr-hp-g450h
- canonical/buffalo wzr-hp-g450h firmware
- canonical/buffalo wzr-300hp firmware
- canonical/buffalo wzr-600dhp firmware
- canonical/buffalo wireless lan routers
- canonical/buffalo wzr-d1100h
- canonical/buffalo wzr-d1100h firmware
- canonical/buffalo fs-hp-g300n firmware
- canonical/buffalo fs-600dhp firmware
- canonical/buffalo fs-r600dhp
- canonical/buffalo fs-r600dhp firmware
- canonical/buffalo fs-g300n
- canonical/buffalo fs-g300n firmware