18 matches found
CVE-2023-31188
Multiple TP-LINK products allow a network-adjacent authenticated attacker to execute arbitrary OS commands. Affected products/versions are as follows: Archer C50 firmware versions prior to 'Archer C50JPV3230505', Archer C55 firmware versions prior to 'Archer C55JPV1230506', and Archer C20 firmwar...
EUVD-2023-36862
Malicious code in bioql PyPI...
CVE-2023-32619
Archer C50 firmware versions prior to 'Archer C50JPV3230505' and Archer C55 firmware versions prior to 'Archer C55JPV1230506' use hard-coded credentials to login to the affected device, which may allow a network-adjacent unauthenticated attacker to execute an arbitrary OS command...
The vulnerability of TP-Link Archer C20, Archer C55, and Archer C50 router microprogramming software lies in the lack of measures to neutralize special elements, allowing attackers to execute arbitrary commands.
The vulnerability of TP-Link Archer C20, Archer C55, and Archer C50 router microprogramming software is related to the lack of measures taken to neutralize special elements used in the operating system commands. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...
CVE-2023-31188
Multiple TP-LINK products allow a network-adjacent authenticated attacker to execute arbitrary OS commands. Affected products/versions are as follows: Archer C50 firmware versions prior to 'Archer C50JPV3230505', Archer C55 firmware versions prior to 'Archer C55JPV1230506', and Archer C20 firmwar...
CVE-2023-31188
Multiple TP-LINK products allow a network-adjacent authenticated attacker to execute arbitrary OS commands. Affected products/versions are as follows: Archer C50 firmware versions prior to 'Archer C50JPV3230505', Archer C55 firmware versions prior to 'Archer C55JPV1230506', and Archer C20 firmwar...
Design/Logic Flaw
Multiple TP-LINK products allow a network-adjacent authenticated attacker to execute arbitrary OS commands. Affected products/versions are as follows: Archer C50 firmware versions prior to 'Archer C50JPV3230505', Archer C55 firmware versions prior to 'Archer C55JPV1230506', and Archer C20 firmwar...
Hardcoded credentials
Archer C50 firmware versions prior to 'Archer C50JPV3230505' and Archer C55 firmware versions prior to 'Archer C55JPV1230506' use hard-coded credentials to login to the affected device, which may allow a network-adjacent unauthenticated attacker to execute an arbitrary OS command...
CVE-2023-31188
Multiple TP-LINK products allow a network-adjacent authenticated attacker to execute arbitrary OS commands. Affected products/versions are as follows: Archer C50 firmware versions prior to 'Archer C50JPV3230505', Archer C55 firmware versions prior to 'Archer C55JPV1230506', and Archer C20 firmwar...
CVE-2023-31188
Multiple TP-LINK products allow a network-adjacent authenticated attacker to execute arbitrary OS commands. Affected products/versions are as follows: Archer C50 firmware versions prior to 'Archer C50JPV3230505', Archer C55 firmware versions prior to 'Archer C55JPV1230506', and Archer C20 firmwar...
CVE-2023-31188
CVE-2023-31188 affects TP-LINK Archer C50, Archer C55, and Archer C20 JP firmware. The root cause is a failure to neutralize special elements in the OS command path, allowing a network-adjacent authenticated attacker to execute arbitrary OS commands. Affected firmwares include Archer C50(JP)_V3_2...
CVE-2023-32619
Archer C50 firmware versions prior to 'Archer C50JPV3230505' and Archer C55 firmware versions prior to 'Archer C55JPV1230506' use hard-coded credentials to login to the affected device, which may allow a network-adjacent unauthenticated attacker to execute an arbitrary OS command...
CVE-2023-32619
Archer C50 firmware versions prior to 'Archer C50JPV3230505' and Archer C55 firmware versions prior to 'Archer C55JPV1230506' use hard-coded credentials to login to the affected device, which may allow a network-adjacent unauthenticated attacker to execute an arbitrary OS command...
CVE-2023-32619
CVE-2023-32619 affects TP‑LINK Archer C50 and C55 devices with JP firmware releases prior to C50_V3_230505 and C55_V1_230506, where hard-coded credentials enable a network‑adjacent, unauthenticated attacker to execute arbitrary OS commands. Root cause: hard-coded login credentials in affected fir...
TP-LINK Archer C7 OS Command Injection Vulnerability
The TP-LINK Archer C7 is a wireless router from China P&L TP-LINK. A security vulnerability exists in firmware versions prior to TP-LINK Archer C7JPV2230602, and firmware versions prior to Archer C55JPV1230506, which stems from a vulnerability that could allow a network-adjacent authenticated...
TP-LINK Archer C50 OS Command Injection Vulnerability
TP-LINK Archer C50 is a wireless router from China P&L TP-LINK. An operating system command injection vulnerability exists in firmware versions prior to TP-LINK Archer C50JPV3230505, Archer C55JPV1230506, and Archer C20JP V1230616, which stems from a vulnerability that allows network-adjacent...
TP-LINK Archer C50 Trust Management Issue Vulnerability
The TP-LINK Archer C50 is a wireless router from China P&L TP-LINK. A security vulnerability exists in firmware versions prior to TP-LINK Archer C50JPV3230505, and Archer C55JPV1230506, which stems from a vulnerability that allows network-adjacent authenticated attackers to execute arbitrary...
PT-2023-5043 · Tp Link · Archer C50 +2
Name of the Vulnerable Software and Affected Versions: Archer C50 versions prior to Archer C50JP V3 230505 Archer C55 versions prior to Archer C55JP V1 230506 Archer C20 versions prior to Archer C20JP V1 230616 Description: Multiple TP-LINK products allow a network-adjacent authenticated attacker...