CVE-2021-20091 is an unspecified vulnerability impacting Buffalo WSR-2533DHPL2 firmware versions 1.02 and earlier and Buffalo WSR-2533DHP3 firmware versions 1.24 and earlier. A proof of concept (PoC) was observed in open source and subsequently shared in the underground. Additionally, a walk-through demo of a PoC was shared via Twitter.
PoC Links(if available):
Tenable: Multiple Vulnerabilities in Buffalo and Arcadyan manufactured routers –
Known Counter Measures:
Buffalo addressed the vulnerability in security advisory with updated versions.
Links to patches(if available)