Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 3:29 p.m.8 views

CVE-2020-28877

Buffer overflow in in the copymsgelement function for the devDiscoverHandle server in the TP-Link WR and WDR series, including WDR7400, WDR7500, WDR7660, WDR7800, WDR8400, WDR8500, WDR8600, WDR8620, WDR8640, WDR8660, WR880N, WR886N, WR890N, WR890N, WR882N, and WR708N...

9.8CVSS7.3AI score0.01184EPSS
Exploits0
NVD
NVD
added 2020/11/20 4:15 p.m.15 views

CVE-2020-28877

Buffer overflow in in the copymsgelement function for the devDiscoverHandle server in the TP-Link WR and WDR series, including WDR7400, WDR7500, WDR7660, WDR7800, WDR8400, WDR8500, WDR8600, WDR8620, WDR8640, WDR8660, WR880N, WR886N, WR890N, WR890N, WR882N, and WR708N...

9.8CVSS9.7AI score0.01184EPSS
Exploits0References2
Cvelist
Cvelist
added 2020/11/20 3:48 p.m.21 views

CVE-2020-28877

Buffer overflow in in the copymsgelement function for the devDiscoverHandle server in the TP-Link WR and WDR series, including WDR7400, WDR7500, WDR7660, WDR7800, WDR8400, WDR8500, WDR8600, WDR8620, WDR8640, WDR8660, WR880N, WR886N, WR890N, WR890N, WR882N, and WR708N...

9.7AI score0.01184EPSS
Exploits0References1
CNVD
CNVD
added 2019/01/22 12:0 a.m.3 views

TP-Link WDR Series Command Injection Vulnerability

TP-Link WDR Series is a WDR series wireless router from China P&L TP-LINK. A command injection vulnerability exists in TP-Link WDR Series using v3 firmware e.g., TL-WDR5620 version V3.0, which stems from the inclusion of the sehll metacharacter in the 'citycode' field. A remote attacker could...

8.8CVSS7.9AI score0.08518EPSS
Exploits1References1
Prion
Prion
added 2019/01/18 10:29 a.m.14 views

Command injection

TP-Link WDR Series devices through firmware v3 such as TL-WDR5620 V3.0 are affected by command injection after login leading to remote code execution, because shell metacharacters can be included in the weather getweatherobserve citycode field...

6.5CVSS9.1AI score0.08518EPSS
Exploits1References1Affected Software5
NVD
NVD
added 2019/01/18 10:29 a.m.20 views

CVE-2019-6487

TP-Link WDR Series devices through firmware v3 such as TL-WDR5620 V3.0 are affected by command injection after login leading to remote code execution, because shell metacharacters can be included in the weather getweatherobserve citycode field...

8.8CVSS9.1AI score0.08518EPSS
Exploits1References1
Cvelist
Cvelist
added 2019/01/18 10:0 a.m.20 views

CVE-2019-6487

TP-Link WDR Series devices through firmware v3 such as TL-WDR5620 V3.0 are affected by command injection after login leading to remote code execution, because shell metacharacters can be included in the weather getweatherobserve citycode field...

9.1AI score0.08518EPSS
Exploits1References1
CVE
CVE
added 2019/01/18 10:0 a.m.51 views

CVE-2019-6487

CVE-2019-6487 affects TP-Link WDR Series devices with firmware v3 (e.g., TL-WDR5620 V3.0). The issue is a command injection vulnerability exploitable after login via the weather get_weather_observe citycode field, enabling remote code execution. Multiple sources (NVD/NVD-derived, Red Hat advisory...

8.8CVSS9AI score0.08518EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder