2 matches found
CVE-2024-1180
CVE-2024-1180 refers to a command-injection vulnerability in TP-Link Omada ER605 where the root cause is improper validation of a user-supplied string in the name field of the access control UI. This flaw can allow network-adjacent attackers to execute arbitrary code with root privileges, and exp...
CVE-2024-1180 TP-Link Omada ER605 Access Control Command Injection Remote Code Execution Vulnerability
TP-Link Omada ER605 Access Control Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of TP-Link Omada ER605. Authentication is required to exploit this vulnerability. The specific issue...