21 matches found
CVE-2023-43137
TPLINK TL-ER5120G 4.0 2.0.0 Build 210817 Rel.80868n has a command injection vulnerability, when an attacker adds ACL rules after authentication, and the rule name parameter has injection points...
CVE-2023-43138
TPLINK TL-ER5120G 4.0 2.0.0 Build 210817 Rel.80868n has a command injection vulnerability, when an attacker adds NAPT rules after authentication, and the rule name has an injection point...
EUVD-2023-47557
Malicious code in bioql PyPI...
TP-LINK TL-ER5120G Command Execution Vulnerability
The TP-LINK TL-ER5120G is a multi-WAN port Gigabit commercial router from China P&L TP-LINK. The TP-LINK TL-ER5120G suffers from a command execution vulnerability that stems from a rule name that fails to correctly filter constructed command special characters, commands, and so on. An attacker...
The vulnerability of TP-LINK’s TL-ER5120G router software, related to deficiencies in authentication procedures, allows attackers to gain unauthorized access to protected information.
The vulnerability of TP-LINK’s TL-ER5120G router microprogramming software is related to deficiencies in authentication procedures. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information...
CVE-2023-43138
TPLINK TL-ER5120G 4.0 2.0.0 Build 210817 Rel.80868n has a command injection vulnerability, when an attacker adds NAPT rules after authentication, and the rule name has an injection point...
CVE-2023-43138
TPLINK TL-ER5120G 4.0 2.0.0 Build 210817 Rel.80868n has a command injection vulnerability, when an attacker adds NAPT rules after authentication, and the rule name has an injection point...
CVE-2023-43137
TPLINK TL-ER5120G 4.0 2.0.0 Build 210817 Rel.80868n has a command injection vulnerability, when an attacker adds ACL rules after authentication, and the rule name parameter has injection points...
CVE-2023-43138
TPLINK TL-ER5120G 4.0 2.0.0 Build 210817 Rel.80868n has a command injection vulnerability, when an attacker adds NAPT rules after authentication, and the rule name has an injection point...
CVE-2023-43137
TPLINK TL-ER5120G 4.0 2.0.0 Build 210817 Rel.80868n has a command injection vulnerability, when an attacker adds ACL rules after authentication, and the rule name parameter has injection points...
Command injection
TPLINK TL-ER5120G 4.0 2.0.0 Build 210817 Rel.80868n has a command injection vulnerability, when an attacker adds ACL rules after authentication, and the rule name parameter has injection points...
Command injection
TPLINK TL-ER5120G 4.0 2.0.0 Build 210817 Rel.80868n has a command injection vulnerability, when an attacker adds NAPT rules after authentication, and the rule name has an injection point...
CVE-2023-43137
TPLINK TL-ER5120G 4.0 2.0.0 Build 210817 Rel.80868n has a command injection vulnerability, when an attacker adds ACL rules after authentication, and the rule name parameter has injection points...
CVE-2023-43138
TPLINK TL-ER5120G 4.0 2.0.0 Build 210817 Rel.80868n has a command injection vulnerability, when an attacker adds NAPT rules after authentication, and the rule name has an injection point...
CVE-2023-43138
The advisory for CVE-2023-43138 covers TP-LINK TL-ER5120G (firmware 4.0 2.0.0 Build 210817 Rel.80868n). The vulnerability is a command injection occurring when an attacker, after authentication, adds NAPT rules and provides an injection-point in the rule name. Practical impact is high confidentia...
CVE-2023-43137
Summary : CVE-2023-43137 affects TP-LINK TL-ER5120G (firmware 4.0 2.0.0 Build 210817 Rel.80868n). The issue is a command injection in the router’s ACL handling: when an attacker adds ACL rules after authentication, the rule name parameter contains injection points that can lead to arbitrary comma...
TP-LINK TL-ER5120G Security Breach
The TP-LINK TL-ER5120G is a multi-WAN port Gigabit commercial router from China P&L TP-LINK. A security vulnerability exists in the TP-LINK TL-ER5120G that stems from an unauthorized access vulnerability...
TP-LINK TL-ER5120G Command Injection Vulnerability
The TP-LINK TL-ER5120G is a multi-WAN port Gigabit commercial router from China P&L TP-LINK. A security vulnerability exists in the TP-LINK ER5120G that stems from a command injection vulnerability...
CVE-2023-43137
TPLINK TL-ER5120G 4.0 2.0.0 Build 210817 Rel.80868n has a command injection vulnerability, when an attacker adds ACL rules after authentication, and the rule name parameter has injection points...
Denial of Service Vulnerability in TP-Link Router TL-ER5120G
The TL-ER5120G is a multi-WAN port Gigabit commercial router. A denial of service vulnerability exists in the TP-Link router TL-ER5120G, which can be exploited by attackers to cause a denial of service attack...