Archer C5 firmware all versions and Archer C7 firmware versions prior to βArcher C7(JP)_V2_230602β allow a network-adjacent authenticated attacker to execute arbitrary OS commands. Note that Archer C5 is no longer supported, therefore the update for this product is not provided.
[
{
"vendor": "TP-LINK",
"product": "Archer C5",
"versions": [
{
"version": "firmware all versions",
"status": "affected"
}
]
},
{
"vendor": "TP-LINK",
"product": "Archer C7",
"versions": [
{
"version": "firmware versions prior to 'Archer C7(JP)_V2_230602'",
"status": "affected"
}
]
}
]