CVE-2021-20091

HIGH EXPLOITED IN THE WILD NUCLEI

Buffalo WSR-2533DHPL2 and WSR-2533DHP3 Firmware - Authenticated Remote Code Execution via Web Interface Input

Title source: llm
STIX 2.1

Exploitation Summary

CVE-2021-20091 has been observed exploited in the wild (reported by VulnCheck KEV, InTheWild.io). A Nuclei detection template is also available.

Description

The web interfaces of Buffalo WSR-2533DHPL2 firmware version <= 1.02 and WSR-2533DHP3 firmware version <= 1.24 do not properly sanitize user input. An authenticated remote attacker could leverage this vulnerability to alter device configuration, potentially gaining remote code execution.

Nuclei Templates (1)

Buffalo WSR-2533DHPL2 - Configuration File Injection
HIGHby gy741,pdteam,parth

References (1)

Core 1
Core References
Third Party Advisory x_refsource_misc
https://www.tenable.com/security/research/tra-2021-13

Scores

CVSS v3 8.8
EPSS 0.0869
EPSS Percentile 94.4%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

VulnCheck KEV 2021-09-20
InTheWild.io 2021-12-17
Status published
Products (2)
buffalo/wsr-2533dhp3-bk_firmware < 1.24
buffalo/wsr-2533dhpl2-bk_firmware < 1.02
Published Apr 29, 2021
Tracked Since Feb 18, 2026