Lucene search
+L

59 matches found

CNVD
CNVD
added 2021/04/26 12:0 a.m.4 views

TP-LINK Archer-C9 router suffers from weak password vulnerability

P&T Technologies Ltd. is a leading global provider of network communication equipment. A weak password vulnerability exists in the Archer-C9 router, which can be exploited by an attacker to log into the system backend and perform unauthorized operations...

7.1AI score
Exploits0
CNVD
CNVD
added 2021/04/22 12:0 a.m.4 views

Weak Password Vulnerability in TP-LINK Archer C9

Archer C9 is a wireless router product. A weak password vulnerability exists in TP-LINK Archer C9. An attacker can exploit the vulnerability to log into the system backend and obtain sensitive information...

7AI score
Exploits0
NVD
NVD
added 2020/11/21 6:15 a.m.28 views

CVE-2020-5797

UNIX Symbolic Link Symlink Following in TP-Link Archer C9USV1180125 firmware allows an unauthenticated actor, with physical access and network access, to read sensitive files and write to a limited set of files after plugging a crafted USB drive into the router...

6.1CVSS6.1AI score0.00649EPSS
Exploits1References1
OSV
OSV
added 2020/11/21 6:15 a.m.5 views

CVE-2020-5797

UNIX Symbolic Link Symlink Following in TP-Link Archer C9USV1180125 firmware allows an unauthenticated actor, with physical access and network access, to read sensitive files and write to a limited set of files after plugging a crafted USB drive into the router...

6.1CVSS6.4AI score0.00649EPSS
Exploits1References1
Prion
Prion
added 2020/11/21 6:15 a.m.21 views

Design/Logic Flaw

UNIX Symbolic Link Symlink Following in TP-Link Archer C9USV1180125 firmware allows an unauthenticated actor, with physical access and network access, to read sensitive files and write to a limited set of files after plugging a crafted USB drive into the router...

3.6CVSS6AI score0.00649EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2020/11/21 5:32 a.m.96 views

CVE-2020-5797

The CVE describes a UNIX Symbolic Link Following vulnerability in TP-Link Archer C9(US)_V1_180125 firmware. The issue allows an unauthenticated attacker with physical access and network access to read sensitive files and write to a limited set of files after inserting a crafted USB drive into the...

6.1CVSS6AI score0.00649EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2020/11/21 5:32 a.m.27 views

CVE-2020-5797

UNIX Symbolic Link Symlink Following in TP-Link Archer C9USV1180125 firmware allows an unauthenticated actor, with physical access and network access, to read sensitive files and write to a limited set of files after plugging a crafted USB drive into the router...

6.1AI score0.00649EPSS
Exploits1References1
CNNVD
CNNVD
added 2020/11/21 12:0 a.m.10 views

TP-Link Archer C9 Backlink Vulnerability

Tp-link TP-Link Archer C9 is a wireless router from China P&L Tp-link. A security vulnerability exists in the TP-Link Archer C9USV1180125, which allows an unauthenticated participant with physical and network access privileges to read sensitive files and write to a limited set of files after...

6.1CVSS6.4AI score0.00649EPSS
Exploits1References2
Check Point Advisories
Check Point Advisories
added 2018/06/19 12:0 a.m.12 views

TP-Link Archer C9 Remote Code Execution (CVE-2017-11519)

An authentication bypass vulnerability exists in TP-Link Archer C9 routers. Successful exploitation of this vulnerability would allow a remote attacker to overwrite arbitrary files on the vulnerable system and potentially execute arbitrary code...

5CVSS7.5AI score0.03051EPSS
Exploits1
CNVD
CNVD
added 2017/07/27 12:0 a.m.3 views

TP-Link Archer C9(UN) Arbitrary Password Reset Vulnerability

TP-Link Archer C9UN is a wireless router product from China P&L TP-LINK. A security vulnerability exists in the passwdrecovery.lua file in the TP-Link Archer C9UN version V2160517. An attacker can exploit the vulnerability to reset the administrator password...

9.8CVSS6.9AI score0.03051EPSS
Exploits1References1
NVD
NVD
added 2017/07/21 9:29 p.m.15 views

CVE-2017-11519

passwdrecovery.lua on the TP-Link Archer C9UNV2160517 allows an attacker to reset the admin password by leveraging a predictable random number generator seed. This is fixed in C9UNV2170511...

9.8CVSS9.3AI score0.03051EPSS
Exploits1References2
OSV
OSV
added 2017/07/21 9:29 p.m.4 views

CVE-2017-11519

passwdrecovery.lua on the TP-Link Archer C9UNV2160517 allows an attacker to reset the admin password by leveraging a predictable random number generator seed. This is fixed in C9UNV2170511...

9.8CVSS5.8AI score0.03051EPSS
Exploits1References2
Prion
Prion
added 2017/07/21 9:29 p.m.12 views

Default credentials

passwdrecovery.lua on the TP-Link Archer C9UNV2160517 allows an attacker to reset the admin password by leveraging a predictable random number generator seed. This is fixed in C9UNV2170511...

5CVSS9.2AI score0.03051EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2017/07/21 9:0 p.m.19 views

CVE-2017-11519

passwdrecovery.lua on the TP-Link Archer C9UNV2160517 allows an attacker to reset the admin password by leveraging a predictable random number generator seed. This is fixed in C9UNV2170511...

9.3AI score0.03051EPSS
Exploits1References2
CVE
CVE
added 2017/07/21 9:0 p.m.51 views

CVE-2017-11519

TP-Link Archer C9(UN)_V2_160517 is affected by CVE-2017-11519 due to a predictable RNG seed in passwd_recovery.lua, enabling an attacker to reset the admin password over the network. The issue is fixed in firmware C9(UN)_V2_170511. If exploited, impact is administrator password reset; CVSS metric...

9.8CVSS9.2AI score0.03051EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2015/04/22 1:59 a.m.19 views

Directory traversal

Directory traversal vulnerability in TP-LINK Archer C5 1.2 with firmware before 150317, C7 2.0 with firmware before 150304, and C8 1.0 with firmware before 150316, Archer C9 1.0, TL-WDR3500 1.0, TL-WDR3600 1.0, and TL-WDR4300 1.0 with firmware before 150302, TL-WR740N 5.0 and TL-WR741ND 5.0 with...

7.8CVSS7.1AI score0.83772EPSS
Exploits5References16Affected Software11
CVE
CVE
added 2015/04/17 6:0 p.m.1005 views

CVE-2015-3035

TP-LINK routers are affected by CVE-2015-3035: a directory traversal in PATH_INFO triggered at /login/ that allows remote attackers to read arbitrary files. Affected models and firmware windows include Archer C5 (1.2) <150317, C7 (2.0) <150304, C8 (1.0) <150316, Archer C9 (1.0), TL-WDR35...

7.8CVSS8.9AI score0.83772EPSS
In wildExploits5References17Affected Software1
Positive Technologies
Positive Technologies
added 2015/04/17 12:0 a.m.7 views

PT-2015-3445 · Tp Link · Tp-Link Tl-Wr741N +10

Name of the Vulnerable Software and Affected Versions: TP-LINK Archer C5 versions 1.2 with firmware before 150317 TP-LINK Archer C7 version 2.0 with firmware before 150304 TP-LINK Archer C8 version 1.0 with firmware before 150316 TP-LINK Archer C9 version 1.0 TP-LINK TL-WDR3500 version 1.0 with...

7.8CVSS9.6AI score0.83772EPSS
Exploits5References23
OpenVAS
OpenVAS
added 2015/04/10 12:0 a.m.59 views

Multiple TP-LINK Products LFI Vulnerability (Apr 2015) - Active Check

Multiple TP-LINK devices are prone to a local file include LFI vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.3AI score0.83772EPSS
Exploits5References3
Rows per page
Query Builder