Lucene search
+L

6 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 2:0 a.m.12 views

CVE-2023-47209

A post authentication command injection vulnerability exists in the ipsec policy functionality of Tp-Link ER7206 Omada Gigabit VPN Router 1.3.0 build 20230322 Rel.70591. A specially crafted HTTP request can lead to arbitrary command injection. An attacker can make an authenticated HTTP request to...

7.2CVSS7.7AI score0.03442EPSS
Exploits1References1
NVD
NVD
added 2024/02/06 5:15 p.m.32 views

CVE-2023-47209

A post authentication command injection vulnerability exists in the ipsec policy functionality of Tp-Link ER7206 Omada Gigabit VPN Router 1.3.0 build 20230322 Rel.70591. A specially crafted HTTP request can lead to arbitrary command injection. An attacker can make an authenticated HTTP request to...

7.2CVSS7.3AI score0.03442EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/02/06 4:20 p.m.36 views

CVE-2023-47209

A post authentication command injection vulnerability exists in the ipsec policy functionality of Tp-Link ER7206 Omada Gigabit VPN Router 1.3.0 build 20230322 Rel.70591. A specially crafted HTTP request can lead to arbitrary command injection. An attacker can make an authenticated HTTP request to...

7.2CVSS7.5AI score0.03442EPSS
Exploits1References1
CVE
CVE
added 2024/02/06 4:20 p.m.54 views

CVE-2023-47209

CVE-2023-47209 affects the TP-Link ER7206 Omada Gigabit VPN Router (1.3.0, build 20230322 Rel.70591). Talos reports a post-authentication command-injection vulnerability in the ipsec policy workflow triggered by a crafted HTTP request to the uhttpd-backed web UI (VPN → IPsec → IPsec Policy). Expl...

7.2CVSS7.3AI score0.03442EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/02/06 4:20 p.m.6 views

CVE-2023-47209

A post authentication command injection vulnerability exists in the ipsec policy functionality of Tp-Link ER7206 Omada Gigabit VPN Router 1.3.0 build 20230322 Rel.70591. A specially crafted HTTP request can lead to arbitrary command injection. An attacker can make an authenticated HTTP request to...

7.2CVSS7.4AI score0.03442EPSS
Exploits1References1
Talos
Talos
added 2024/02/06 12:0 a.m.42 views

TP-Link ER7206 Omada Gigabit VPN Router uhttpd ipsec command injection vulnerability

Talos Vulnerability Report TALOS-2023-1854 TP-Link ER7206 Omada Gigabit VPN Router uhttpd ipsec command injection vulnerability February 6, 2024 CVE Number CVE-2023-47209 SUMMARY A post authentication command injection vulnerability exists in the ipsec policy functionality of Tp-Link ER7206 Omada...

7.2CVSS7.9AI score0.03442EPSS
Exploits1
Rows per page
Query Builder