VDB
CVE-2015-8262
CVE-2015-8262
PUBLISHED
CVSS 5 MEDIUM
Buffalo WZR-600DHP2 devices with firmware 2.09, 2.13, and 2.16 use an improper algorithm for selecting the ID value in the header of a DNS query, which makes it easier for remote attackers to spoof responses by predicting this value.
EPSS 0.80% · 74.4th percentile
Risk Scores
CVSS 2.0
5
EPSS Score
0.80%
74.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| buffalotech | airstation_extreme_n600 | |
| buffalotech | airstation_extreme_n600_firmware | 2.13, 2.09, 2.16 |
| n/a | n/a | n/a |
Timeline
- Dec 10, 2015 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 3, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 8, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 2, 2023 EPSS Score
- May 25, 2023 EPSS Score
References
- 78877 vdb
- VU#646008 third-party-advisory
- https://nvd.nist.gov/vuln/detail/CVE-2015-8262 advisory