CVE-2021-20090
Arcadyan Buffalo Firmware Path Traversal Vulnerability
CVSS
—
No CVSS
EPSS
100.0%
p100
KEV
YES
Nov 3, 2021
Exploit Today
80
0-100
Published: — · Last modified: —
100.0%EPSS · 30 days100.0%
2026-06-302026-07-16
Product
Arcadyan / Buffalo Firmware
Vulnerability
Arcadyan Buffalo Firmware Path Traversal Vulnerability
Added to KEV
Nov 3, 2021
Remediate by
Nov 17, 2021
Known ransomware use
No
Summary description
Arcadyan Buffalo firmware contains a path traversal vulnerability that could allow unauthenticated, remote attackers to bypass authentication and access sensitive information. This vulnerability affects multiple routers across several different vendors.
Required action
Apply updates per vendor instructions.
Notes
https://nvd.nist.gov/vuln/detail/CVE-2021-20090
No related CVEs by CWE or product.