{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-33366", "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce", "state": "PUBLISHED", "assignerShortName": "jpcert", "dateReserved": "2026-03-25T06:25:35.445Z", "datePublished": "2026-03-27T05:25:58.656Z", "dateUpdated": "2026-03-27T05:25:58.656Z"}, "containers": {"cna": {"affected": [{"vendor": "BUFFALO INC.", "product": "BUFFALO Wi-Fi router products", "versions": [{"version": "See \"References\" section", "status": "affected"}]}], "descriptions": [{"lang": "en", "value": "Missing authentication for critical function vulnerability in BUFFALO Wi-Fi router products may allow an attacker to forcibly reboot the product without authentication."}], "problemTypes": [{"descriptions": [{"description": "Missing authentication for critical function", "lang": "en-US", "cweId": "CWE-306", "type": "CWE"}]}], "references": [{"url": "https://www.buffalo.jp/news/detail/20260323-01.html"}, {"url": "https://jvn.jp/en/jp/JVN83788689/"}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en-US", "value": "GENERAL"}], "cvssV3_0": {"version": "3.0", "baseSeverity": "MEDIUM", "baseScore": 5.3, "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}}, {"format": "CVSS", "scenarios": [{"lang": "en-US", "value": "GENERAL"}], "cvssV4_0": {"version": "4.0", "baseSeverity": "MEDIUM", "baseScore": 6.9, "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"}}], "providerMetadata": {"orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce", "shortName": "jpcert", "dateUpdated": "2026-03-27T05:25:58.656Z"}}}}

{}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Missing authentication for critical function vulnerability in BUFFALO Wi-Fi router products may allow an attacker to forcibly reboot the product without authentication."}], "id": "CVE-2026-33366", "lastModified": "2026-03-27T06:16:38.997", "metrics": {"cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "version": "3.0"}, "exploitabilityScore": 3.9, "impactScore": 1.4, "source": "vultures@jpcert.or.jp", "type": "Secondary"}], "cvssMetricV40": [{"cvssData": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "NETWORK", "availabilityRequirement": "NOT_DEFINED", "baseScore": 6.9, "baseSeverity": "MEDIUM", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "NONE", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnAvailabilityImpact": "LOW", "vulnConfidentialityImpact": "NONE", "vulnIntegrityImpact": "NONE", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "source": "vultures@jpcert.or.jp", "type": "Secondary"}]}, "published": "2026-03-27T06:16:38.997", "references": [{"source": "vultures@jpcert.or.jp", "url": "https://jvn.jp/en/jp/JVN83788689/"}, {"source": "vultures@jpcert.or.jp", "url": "https://www.buffalo.jp/news/detail/20260323-01.html"}], "sourceIdentifier": "vultures@jpcert.or.jp", "vulnStatus": "Received", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-306"}], "source": "vultures@jpcert.or.jp", "type": "Primary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-03-27T07:50:32.316363+00:00", "value": {"mitigation_remediation": ["Apply the latest firmware release provided by Buffalo to address the missing authentication flaw", "If a patch is not yet available, restrict external access to the router\u2019s administrative interfaces using a firewall or network segmentation", "Consider disabling remote administration features if not needed, and enforce network security practices such as VLAN isolation"], "summary": {"action": "Patch", "impact": "Denial of Service (Forced Reboot)"}, "threat_synthesis": {"affected_systems": "The vulnerability affects all BUFFALO Wi\u2011Fi router products, as identified by the vendor. Specific model or firmware versions are not disclosed in the available information, so any device running the affected firmware is potentially at risk.", "description_and_impact": "A missing authentication check in a critical reboot function of Buffalo Wi\u2011Fi routers allows an attacker to force a reboot without credentials. The flaw can disrupt network connectivity by causing the router to restart abruptly, potentially impacting all connected devices and services. This weakness exemplifies insufficient authentication leading to denial of service, and is classified as CWE\u2011306.", "risk_and_exploitability": "Based on the description, it is inferred that the attacker can trigger the reboot by sending the privileged command over the network, requiring only remote access to the router. The CVSS score of 6.9 indicates moderate severity. The EPSS score is not available, and the vulnerability is not listed in the CISA KEV catalog. With remote network exposure, the likelihood of exploitation is relatively high, as the attack does not require privileges beyond network connectivity."}}}}, "created": "2026-03-27T09:22:11.442151+00:00", "title": "Forced Reboot via Authentication Bypass on Buffalo Wi\u2011Fi Routers", "updated": "2026-03-27T09:22:11.442176+00:00", "vendors": []}