4 matches found
PT-2025-36367
Name of the Vulnerable Software and Affected Versions TP-Link AX10 versions prior to 1.2.1 TP-Link AX1500 versions prior to 1.3.11 Description A flaw exists in the CWMP CWMP/TR-069 binary of TP-Link AX10 and AX1500 routers that could allow an authenticated attacker to remotely execute arbitrary...
CVE-2020-10209
Command Injection in the CPE WAN Management Protocol CWMP registration in Amino Communications AK45x series, AK5xx series, AK65x series, Aria6xx series, Aria7/AK7Xx series and Kami7B allows man-in-the-middle attackers to execute arbitrary commands with root level privileges...
CVE-2020-10209
Command Injection in the CPE WAN Management Protocol CWMP registration in Amino Communications AK45x series, AK5xx series, AK65x series, Aria6xx series, Aria7/AK7Xx series and Kami7B allows man-in-the-middle attackers to execute arbitrary commands with root level privileges...
TR-069 Auto Configuration Server Arbitrary Code Execution Vulnerability (CNVD-2015-00283)
TR-069 is the DSL Forum Technical Specification "CPE WAN Management Protocol CWMP", which defines the application layer protocol for remote management of end devices. An arbitrary code execution vulnerability exists in TR-069 Auto Configuration Server. A remote attacker can exploit this...