Home / Vulnerability Intelligence / CVE-2026-32669

CVE-2026-32669 - Vulnerability Analysis

HighCVSS: 8.8

Last Updated: March 30, 2026

BUFFALO Wi-Fi router - Command Injection

Published: March 27, 2026Updated: March 30, 2026Remote Exploitable

Overview

BUFFALO Wi-Fi router contains a code injection vulnerability that allows attackers to execute arbitrary code on the device, exploit requires no special privileges.

Severity & Score

Severity: High

CVSS Score: 8.8

EPSS Score: 4.5%(Probability of exploitation in next 30 days)

Impact

Attackers can execute arbitrary code on the router, potentially taking full control of the device.

Mitigation

Update to the latest firmware version provided by BUFFALO.

References

Social Media Activity(1 post)

TheHackerWire

@thehackerwire

Mar 28, 2026

🟠 CVE-2026-32669 - High (8.8) Code injection vulnerability exists in BUFFALO Wi-Fi router products. If this vulnerability is exploited, an arbitrary code may be executed on the products. 🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-32669/ #CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

View original post

Related Resources

Details

CVE ID: CVE-2026-32669
Severity: High
CVSS Score: 8.8
Type: command_injection
Status: unconfirmed
EPSS: 4.5%
Social Posts: 1

CWE

CWE-94

CVSS Metrics

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS Score

4.5%Probability of exploitation in the next 30 days