59 matches found
TP-LINK Archer-C9 router suffers from weak password vulnerability
P&T Technologies Ltd. is a leading global provider of network communication equipment. A weak password vulnerability exists in the Archer-C9 router, which can be exploited by an attacker to log into the system backend and perform unauthorized operations...
Weak Password Vulnerability in TP-LINK Archer C9
Archer C9 is a wireless router product. A weak password vulnerability exists in TP-LINK Archer C9. An attacker can exploit the vulnerability to log into the system backend and obtain sensitive information...
CVE-2020-5797
UNIX Symbolic Link Symlink Following in TP-Link Archer C9USV1180125 firmware allows an unauthenticated actor, with physical access and network access, to read sensitive files and write to a limited set of files after plugging a crafted USB drive into the router...
CVE-2020-5797
UNIX Symbolic Link Symlink Following in TP-Link Archer C9USV1180125 firmware allows an unauthenticated actor, with physical access and network access, to read sensitive files and write to a limited set of files after plugging a crafted USB drive into the router...
Design/Logic Flaw
UNIX Symbolic Link Symlink Following in TP-Link Archer C9USV1180125 firmware allows an unauthenticated actor, with physical access and network access, to read sensitive files and write to a limited set of files after plugging a crafted USB drive into the router...
CVE-2020-5797
The CVE describes a UNIX Symbolic Link Following vulnerability in TP-Link Archer C9(US)_V1_180125 firmware. The issue allows an unauthenticated attacker with physical access and network access to read sensitive files and write to a limited set of files after inserting a crafted USB drive into the...
CVE-2020-5797
UNIX Symbolic Link Symlink Following in TP-Link Archer C9USV1180125 firmware allows an unauthenticated actor, with physical access and network access, to read sensitive files and write to a limited set of files after plugging a crafted USB drive into the router...
TP-Link Archer C9 Backlink Vulnerability
Tp-link TP-Link Archer C9 is a wireless router from China P&L Tp-link. A security vulnerability exists in the TP-Link Archer C9USV1180125, which allows an unauthenticated participant with physical and network access privileges to read sensitive files and write to a limited set of files after...
TP-Link Archer C9 Remote Code Execution (CVE-2017-11519)
An authentication bypass vulnerability exists in TP-Link Archer C9 routers. Successful exploitation of this vulnerability would allow a remote attacker to overwrite arbitrary files on the vulnerable system and potentially execute arbitrary code...
TP-Link Archer C9(UN) Arbitrary Password Reset Vulnerability
TP-Link Archer C9UN is a wireless router product from China P&L TP-LINK. A security vulnerability exists in the passwdrecovery.lua file in the TP-Link Archer C9UN version V2160517. An attacker can exploit the vulnerability to reset the administrator password...
CVE-2017-11519
passwdrecovery.lua on the TP-Link Archer C9UNV2160517 allows an attacker to reset the admin password by leveraging a predictable random number generator seed. This is fixed in C9UNV2170511...
CVE-2017-11519
passwdrecovery.lua on the TP-Link Archer C9UNV2160517 allows an attacker to reset the admin password by leveraging a predictable random number generator seed. This is fixed in C9UNV2170511...
Default credentials
passwdrecovery.lua on the TP-Link Archer C9UNV2160517 allows an attacker to reset the admin password by leveraging a predictable random number generator seed. This is fixed in C9UNV2170511...
CVE-2017-11519
passwdrecovery.lua on the TP-Link Archer C9UNV2160517 allows an attacker to reset the admin password by leveraging a predictable random number generator seed. This is fixed in C9UNV2170511...
CVE-2017-11519
TP-Link Archer C9(UN)_V2_160517 is affected by CVE-2017-11519 due to a predictable RNG seed in passwd_recovery.lua, enabling an attacker to reset the admin password over the network. The issue is fixed in firmware C9(UN)_V2_170511. If exploited, impact is administrator password reset; CVSS metric...
Directory traversal
Directory traversal vulnerability in TP-LINK Archer C5 1.2 with firmware before 150317, C7 2.0 with firmware before 150304, and C8 1.0 with firmware before 150316, Archer C9 1.0, TL-WDR3500 1.0, TL-WDR3600 1.0, and TL-WDR4300 1.0 with firmware before 150302, TL-WR740N 5.0 and TL-WR741ND 5.0 with...
CVE-2015-3035
TP-LINK routers are affected by CVE-2015-3035: a directory traversal in PATH_INFO triggered at /login/ that allows remote attackers to read arbitrary files. Affected models and firmware windows include Archer C5 (1.2) <150317, C7 (2.0) <150304, C8 (1.0) <150316, Archer C9 (1.0), TL-WDR35...
PT-2015-3445 · Tp Link · Tp-Link Tl-Wr741N +10
Name of the Vulnerable Software and Affected Versions: TP-LINK Archer C5 versions 1.2 with firmware before 150317 TP-LINK Archer C7 version 2.0 with firmware before 150304 TP-LINK Archer C8 version 1.0 with firmware before 150316 TP-LINK Archer C9 version 1.0 TP-LINK TL-WDR3500 version 1.0 with...
Multiple TP-LINK Products LFI Vulnerability (Apr 2015) - Active Check
Multiple TP-LINK devices are prone to a local file include LFI vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...