Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2023-6437

🗓️ 28 Mar 2024 13:13:09Reported by TR-CERTType 
cve
 cve🔗 web.nvd.nist.gov👁 123 Views

Improper Neutralization of Special Elements allows OS Command Injection in Turk Telekom TP-Lin

Related
Detection
Affected
Refs
ReporterTitlePublishedViews
Family
ATTACKERKB		CVE-2023-6437
28 Mar 202414:15
attackerkb
BDU FSTEC		The vulnerability of the microprogrammed software of TP-Link Wi-Fi routers such as EX20v, AX1800, Archer C5v AC1200, TD-W9970, and TD-W9970v3 exists due to the lack of measures to neutralize the special elements used in the operating system. This vulnerability allows a perpetrator to execute arbitrary commands.
5 Apr 202400:00
bdu_fstec
CNNVD		TP-LINK AX1500 操作系统命令注入漏洞
28 Mar 202400:00
cnnvd
CNVD		TP-LINK AX1500 OS Command Injection Vulnerability
3 Apr 202400:00
cnvd
Cvelist		CVE-2023-6437 Authenticated RCE
28 Mar 202413:13
cvelist
EUVD		EUVD-2023-58674
3 Oct 202520:07
euvd
NVD		CVE-2023-6437
28 Mar 202414:15
nvd
Positive Technologies		PT-2024-2586
28 Mar 202400:00
ptsecurity
Vulnrichment		CVE-2023-6437 Authenticated RCE
28 Mar 202413:13
vulnrichment
Vulners
Node
tp-linktp-link_ex20v_ax18Range20240328
OR
tp-linktp-link_archer_c5v_ac12Range20240328
OR
tp-linktp-link_td-w997Range20240328
OR
tp-linktp-link_td-w9970v3Range20240328
OR
tp-linktp-link_vx220-g2uRange20240328
OR
tp-linktp-link_vn020-g2uRange20240328
[
  {
    "vendor": "TP-Link",
    "product": "TP-Link EX20v AX1800, Tp-Link Archer C5v AC1200, Tp-Link TD-W9970, Tp-Link TD-W9970v3, TP-Link VX220-G2u, TP-Link VN020-G2u",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThanOrEqual": "20240328",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
20 May 2026 12:16Current
5.8Medium risk
Vulners AI Score5.8
CVSS 3.19.8
EPSS0.01138
SSVC
CWE-78
cve-2023-6437os command injectionturk telekomtp-linknvdsecurity vulnerability2024.03.28
123