EUVD-2024-19387

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Multiple TP-LINK products allow unauthorized local attackers to execute OS commands remotely.

Reporter	Title	Published	Views	Family All 10
Circl	CVE-2024-21773	11 Jan 202401:31	–	circl
CNNVD	Multiple TP-LINK Products Operating System Command Injection Vulnerability	9 Jan 202400:00	–	cnnvd
CVE	CVE-2024-21773	10 Jan 202423:24	–	cve
Cvelist	CVE-2024-21773	10 Jan 202423:24	–	cvelist
Japan Vulnerability Notes	Multiple TP-Link products vulnerable to OS command injection	10 Jan 202404:57	–	jvn
NVD	CVE-2024-21773	11 Jan 202400:15	–	nvd
Prion	Design/Logic Flaw	11 Jan 202400:15	–	prion
Positive Technologies	PT-2024-19047 · Tp Link · Tp-Link	10 Jan 202400:00	–	ptsecurity
RedhatCVE	CVE-2024-21773	23 May 202509:43	–	redhatcve
Vulnrichment	CVE-2024-21773	10 Jan 202423:24	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "c39a6586-a6e9-30bf-86b2-cef632d6b8ee",
        "vendor": {
          "name": "TP-Link"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "54b0df67-58f3-32c2-a604-448068d9f367",
        "product": {
          "name": "Archer AX3000"
        }
      },
      {
        "id": "71997c3e-7049-362e-ad26-809153b10170",
        "product": {
          "name": "Archer Air R5"
        },
        "product_version": "firmware versions prior to \"Archer Air R5(JP)_V1_1.1.6 Build 20240508\""
      },
      {
        "id": "742bdef4-2601-343d-ac18-06a19ae76622",
        "product": {
          "name": "Deco XE200"
        },
        "product_version": "firmware versions prior to \"Deco XE200(JP)_V1_1.2.5 Build 20231120\""
      },
      {
        "id": "7e4b8a65-efaf-3432-97cd-b757f2414350",
        "product": {
          "name": "Archer AX5400"
        }
      },
      {
        "id": "b1c490bf-eb71-39bc-9b46-137a6bafd4a0",
        "product": {
          "name": "Deco X50"
        }
      },
      {
        "id": "bcbebbb9-d34d-346f-b5d3-517d51b39a22",
        "product": {
          "name": "Deco X50"
        },
        "product_version": "firmware versions prior to \"Deco X50(JP)_V1_1.4.1 Build 20231122\""
      },
      {
        "id": "cfb139aa-7aed-3cc4-bd6d-7a0510f2b465",
        "product": {
          "name": "Archer AX5400"
        },
        "product_version": "firmware versions prior to \"Archer AX5400(JP)_V1_1.1.2 Build 20231115\""
      },
      {
        "id": "ebb8e213-7d47-3027-ba10-4eb20746eada",
        "product": {
          "name": "Deco XE200"
        }
      },
      {
        "id": "ec2bc504-6a9d-3201-81b5-d1123d974ef3",
        "product": {
          "name": "Archer AX3000"
        },
        "product_version": "firmware versions prior to \"Archer AX3000(JP)_V1_1.1.2 Build 20231115\""
      }
    ]
  }
]

Source	Link
tp-link	www.tp-link.com/jp/support/download/archer-ax3000/
tp-link	www.tp-link.com/jp/support/download/archer-ax5400/
tp-link	www.tp-link.com/jp/support/download/deco-x50/v1/
tp-link	www.tp-link.com/jp/support/download/deco-xe200/
jvn	www.jvn.jp/en/vu/JVNVU91401812/
tp-link	www.tp-link.com/jp/support/download/archer-air-r5/v1/

03 Oct 2025 20:07Current

8High risk

Vulners AI Score8

CVSS 3.18.8

EPSS0.00179

SSVC