Lucene search

K
prionPRIOn knowledge basePRION:CVE-2021-44827
HistoryMar 04, 2022 - 10:15 p.m.

Command injection

2022-03-0422:15:00
PRIOn knowledge base
www.prio-n.com
3

8.8 High

AI Score

Confidence

High

0.022 Low

EPSS

Percentile

89.5%

There is remote authenticated OS command injection on TP-Link Archer C20i 0.9.1 3.2 v003a.0 Build 170221 Rel.55462n devices vie the X_TP_ExternalIPv6Address HTTP parameter, allowing a remote attacker to run arbitrary commands on the router with root privileges.

CPENameOperatorVersion
archer_c20i_firmwarele170221

8.8 High

AI Score

Confidence

High

0.022 Low

EPSS

Percentile

89.5%