Security Notices

We investigate our product line regularly

Security vulnerabilities may allow attackers to access your TeraStation NAS device and deploy malware, carry out a denial‐of‐service (DoS) attack, or steal data. Refer to the charts below for more information on discovered vulnerabilities. Buffalo will regularly release firmware updates to resolve identified vulnerabilities.

Check the list of identified vulnerabilities and products affected:

Date	Description of vulnerability and updates	Affected Products
December 04, 2019	CVE‐2018‐13318/-19/-20/-21/-22/-23/-24	LS200 /FW 1.73 LS400/ FW 1.86 TS1000/FW 1.65 TS3000/ FW 1.92 TS4/5000 FW 4.02 TS3010/5010 FW 4.48 TS6000 FW 5.10 TrendMicro NAS security feature (Anti-Virus) TS3020 FW 4.51 TS7000 FW 2.65
January 11, 2018	CPU Vulnerability	WSH5610 Series, WS5000 Series
December 12, 2017	INTEL-SA-00086	No products affected
December 12, 2017	Samba-Vulnerability（CVE-2017-14746 , CVE-2017-15275)	TeraStation™, LinkStation™, AirStation™
November 2017	WPA2-Vulnerability	Wireless Routers, USB adapters
June 2, 2017	Samba vulnerability CVE-2017-7494	TeraStation™, LinkStation™, AirStation™

Report Vulnerabilities

Please contact: [email protected] to report security issues that might affect Buffalo products.

Please note that this e-mail address is used for monitoring potential product security issues and prompt reply may not be expected unless further information is required. For technical support for Buffalo products, please visit our Service and Support page instead.