CVE-2023-31756

2023-05-1913:15:08

CWE-78

[email protected]

web.nvd.nist.gov

remote attackers

operating system shell

administrative web portal

CVSS3

6.7

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

AI Score

6.7

Confidence

High

EPSS

0.001

Percentile

30.2%

JSON

A command injection vulnerability exists in the administrative web portal in TP-Link Archer VR1600V devices running firmware Versions <= 0.1.0. 0.9.1 v5006.0 Build 220518 Rel.32480n which allows remote attackers, authenticated to the administrative web portal as an administrator user to open an operating system level shell via the ‘X_TP_IfName’ parameter.

Affected configurations

Nvd

Node

tp-linkarcher_vr1600v_firmwareRange≤0.1.0_0.9.1_v5006.0_build_200810_rel.53181n

AND

tp-linkarcher_vr1600vMatch-

VendorProductVersionCPE
tp-linkarcher_vr1600v_firmware*cpe:2.3:o:tp-link:archer_vr1600v_firmware:*:*:*:*:*:*:*:*
tp-linkarcher_vr1600v-cpe:2.3:h:tp-link:archer_vr1600v:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
tp-link	archer_vr1600v_firmware	*	cpe:2.3:o:tp-link:archer_vr1600v_firmware::::::::
tp-link	archer_vr1600v	-	cpe:2.3:h:tp-link:archer_vr1600v:-:::::::*