51 matches found
CVE-2023-31188
Multiple TP-LINK products allow a network-adjacent authenticated attacker to execute arbitrary OS commands. Affected products/versions are as follows: Archer C50 firmware versions prior to 'Archer C50JPV3230505', Archer C55 firmware versions prior to 'Archer C55JPV1230506', and Archer C20 firmwar...
CVE-2023-31188
Multiple TP-LINK products allow a network-adjacent authenticated attacker to execute arbitrary OS commands. Affected products/versions are as follows: Archer C50 firmware versions prior to 'Archer C50JPV3230505', Archer C55 firmware versions prior to 'Archer C55JPV1230506', and Archer C20 firmwar...
CVE-2023-31188
CVE-2023-31188 affects TP-LINK Archer C50, Archer C55, and Archer C20 JP firmware. The root cause is a failure to neutralize special elements in the OS command path, allowing a network-adjacent authenticated attacker to execute arbitrary OS commands. Affected firmwares include Archer C50(JP)_V3_2...
CVE-2023-37284
CVE-2023-37284 affects TP-Link Archer C20 firmware prior to JP_V1_230616. The underlying issue is improper authentication, enabling a network-adjacent, unauthenticated attacker to execute arbitrary OS commands via a crafted request to bypass authentication. Affected product/versions: Archer C20 (...
CVE-2023-37284
Improper authentication vulnerability in Archer C20 firmware versions prior to 'Archer C20JPV1230616' allows a network-adjacent unauthenticated attacker to execute an arbitrary OS command via a crafted request to bypass authentication...
CVE-2023-37284
Improper authentication vulnerability in Archer C20 firmware versions prior to 'Archer C20JPV1230616' allows a network-adjacent unauthenticated attacker to execute an arbitrary OS command via a crafted request to bypass authentication...
TP-LINK Archer C50 OS Command Injection Vulnerability
TP-LINK Archer C50 is a wireless router from China P&L TP-LINK. An operating system command injection vulnerability exists in firmware versions prior to TP-LINK Archer C50JPV3230505, Archer C55JPV1230506, and Archer C20JP V1230616, which stems from a vulnerability that allows network-adjacent...
PT-2023-5454 · Tp Link · Tp-Link Archer C20
Name of the Vulnerable Software and Affected Versions: TP-Link Archer C20 versions prior to Archer C20JP V1 230616 Description: The issue is related to improper authentication in the TP-Link Archer C20 firmware, which can be exploited by a network-adjacent unauthenticated attacker to execute...
PT-2023-5043 · Tp Link · Archer C50 +2
Name of the Vulnerable Software and Affected Versions: Archer C50 versions prior to Archer C50JP V3 230505 Archer C55 versions prior to Archer C55JP V1 230506 Archer C20 versions prior to Archer C20JP V1 230616 Description: Multiple TP-LINK products allow a network-adjacent authenticated attacker...
PT-2023-5279 · Tp Link · Tp-Link Archer C2 +2
Name of the Vulnerable Software and Affected Versions: TP-Link Archer C50 version Archer C50US V2 160801 TP-Link Archer C20 version Archer C20 V1 150707 TP-Link Archer C2 version Archer C2 US V1 170228 Description: The issue is related to a buffer overflow in the Wi-Fi router's firmware when...
Huawei FusionAccess HTTP Header Injection Vulnerability
Huawei FusionAccess is a desktop management system for Huawei's FusionCloud desktop cloud solution from Huawei, China. The system distributes, maintains, and recycles virtual desktops for users through a graphical Portal interface. An HTTP header injection vulnerability exists in Huawei...