6 matches found
CVE-2026-10562
An unauthenticated URL redirection vulnerability has been identified in Archer AX20 V2 due to improper validation of user-supplied URL input within the web interface. An unauthenticated attacker can craft URLs containing URL-encoded path traversal sequences. When processed by the embedded web...
EUVD-2026-40410
An unauthenticated URL redirection vulnerability has been identified in Archer AX20 V2 due to improper validation of user-supplied URL input within the web interface. An unauthenticated attacker can craft URLs containing URL-encoded path traversal sequences. When processed by the embedded web...
CVE-2023-28760
TP-Link AX1800 WiFi 6 Router Archer AX21 devices allow unauthenticated attackers on the LAN to execute arbitrary code as root via the dbdir field to minidlnad. The attacker obtains the ability to modify files.db, and that can be used to reach a stack-based buffer overflow in...
The vulnerability of the MiniDLNA service in the TPDLNA/files.db file of TP-Link Archer AX20 (AX1800) routers allows a hacker to execute arbitrary code.
The vulnerability of the MiniDLNA service in the TPDLNA/files.db file on TP-Link Archer AX20 AX1800 routers is caused by a buffer overflow in the stack. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary code...
PT-2023-2326
Name of the Vulnerable Software and Affected Versions TP-Link Archer AX20 AX1800 and Archer AX21 versions prior to a fix TP-Link Archer AX1800 WiFi 6 Router versions prior to a fix TP-Link Archer AX21 versions prior to a fix Description The MiniDLNA service in TP-Link Archer AX20 AX1800 and Arche...
SRC-2023-0003 : TP-Link Archer AX20/AX21 minidlnad db_dir Remote Code Execution Vulnerability
Vulnerability Details: This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of TP-Link Archer AX20 and AX21 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the misconfiguration of the dbdir...