Security Notices for Buffalo TeraStations

Buffalo actively participates in the new JC-STAR program established by the Japanese Ministry of Economy, Trade and Industry (METI). This framework is a key part of our commitment to ensuring our TeraStation products meet robust cybersecurity standards.

Buffalo TeraStations use a closed operating system that does not allow users to access the OS, install programs, or change the code, thus closing off many cyberattack vectors. 

Many of our customers are running security scanning software that identify versioning information of the various network services provided by the TeraStation and report on known vulnerabilities associated with that software. 

Buffalo is committed to the security of our customers data. We will investigate and report on the various security vulnerabilities that may affect our systems, and publish any remediation or the results of investigations here. 

The list of systems supported with this reporting are:

• TeraStation 7010 Series (JC-STAR compatible with firmware v2.00 or later)
• TeraStation 6000 Series
• TeraStation 5020 / 3030 Series (JC-STAR compatible with firmware v3.00 or later)
• TeraStation 5010 / 3010 / 3020 Series

Vulnerabities on other systems will be addressed according to their severity, and users should consult the Firmware Update notes for a history of security patches applied. 

For environments where regulatory compliance requires specific responses to vulnerability scanning sortware, Buffalo recommends the use of the above systems.

Report Vulnerabilities

Please contact: security@buffaloamericas.com to report security issues that might affect Buffalo TeraStations.

Please note that this e-mail address is used for monitoring potential product security issues. Any and all replies may not occur unless further information is required or supplied. For technical support of Buffalo products, please visit our Support page instead.