3 matches found
TP-Link Wi-Fi extender User-Agent Header Injection CVE-2019-7406
A pre-authentication command injection vulnerability in TP-Link Wi-Fi extenders allows commands to be executed as root. The injection occurs when the User-Agent header of a request is passed to an execve system call. TP-Link RE365 Wi-Fi extender with firmware version 1.0.2, build 20180213 Rel...
TP-LINK Wi-Fi Repeater to a vulnerability that can be used for remote code execution-vulnerability warning-the black bar safety net
IBM X-Force researcher Grzegorz Wypych recently issued a warning that some of the TP-Link Wi-Fi Repeater devices there is a serious remote code execution vulnerability, the vulnerability can lead to external attackers access device privileges and execute arbitrary commands. ! IBM Security section...
TP-Link WiFi Extender Remote Code Execution (CVE-2019-7406)
A remote code execution vulnerability exists in TP-Link WiFi Extender. An unauthenticated remote attacker can exploit this issue by sending an HTTP request with a specially crafted HTTP header. Successful exploitation could result in execution of arbitrary code on the affected system...