CVE-2026-27650

CRITICAL

OS Command Injection vulnerability exists in BUFFALO Wi-Fi router products. If this vulnerability is exploited, an arbitrary OS command may be executed on the products.

CVSS v3.1 Score

9.8

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Complexity

LOW

Privileges

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Published: 3/27/2026Modified: 3/31/2026

Related Intelligence (1)

CRITICALVulnerability

NVD CRITICAL: CVE-2026-27650 — OS Command Injection vulnerability exists in BUFFALO Wi-Fi router products. If t...

OS Command Injection vulnerability exists in BUFFALO Wi-Fi router products. If this vulnerability is exploited, an arbitrary OS command may be executed on the products.

CVE-2026-27650

Mar 27, 2026NIST NVD

References (2)

https://jvn.jp/en/jp/JVN83788689/Third Party Advisory https://www.buffalo.jp/news/detail/20260323-01.htmlVendor Advisory

Command Palette

CVE-2026-27650

CVSS v3.1 Score

Related Intelligence (1)

NVD CRITICAL: CVE-2026-27650 — OS Command Injection vulnerability exists in BUFFALO Wi-Fi router products. If t...

References (2)