CVE-2026-29516

MEDIUM 4.9

Buffalo TeraStation TS5400R Excessive File Permissions Information Disclosure

CVSS Score

4.9

EPSS Score

0.0%

EPSS Percentile

0th

Buffalo TeraStation NAS TS5400R firmware version 4.02-0.06 and prior contain an excessive file permissions vulnerability that allows authenticated attackers to read the /etc/shadow file by uploading and executing a PHP file through the webserver. Attackers can exploit world-readable permissions on /etc/shadow to retrieve hashed passwords for all configured accounts including root.

CWE	CWE-732
Vendor	buffalo
Product	terastation nas ts5400r
Published	Mar 16, 2026
Last Updated	Mar 17, 2026

Stay Ahead of the Next One

Get instant alerts for buffalo terastation nas ts5400r

Be the first to know when new medium vulnerabilities affecting buffalo terastation nas ts5400r are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

High

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

None

Availability

None

Affected Versions

Buffalo / TeraStation NAS TS5400R

0 ≤ 4.02-0.06

References

NVD ↗ CVE.org ↗ EPSS Data ↗

buffaloamericas.com: https://buffaloamericas.com/ vulncheck.com: https://www.vulncheck.com/advisories/buffalo-terastation-ts5400r-excessive-file-permissions-information-disclosure

Credits

Victor A. Morales, Senior Pentester Team Leader, GM Sectec, Corp Omar Crespo, Pentester, GM Sectec, Corp. VulnCheck