CVE-2016-4815 (wzr-600dhp2_firmware, wzr-600dhp3_firmware, wzr-900dhp_firmware, wzr-900dhp2_firmware, wzr-s600dhp_firmware, wzr-s900dhp_firmware)
Directory traversal vulnerability on BUFFALO WZR-600DHP3 devices with firmware 2.16 and earlier and WZR-S600DHP devices with firmware 2.16 and earlier allows remote attackers to read arbitrary files via unspecified vectors.