2 matches found
Design/Logic Flaw
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of TP-Link Archer A7 Firmware Ver: 190726 AC1750 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the tdpServer service, which listens on...
CVE-2020-10882
CVE-2020-10882 affects TP-Link Archer A7 AC1750 with the tdpServer daemon (UDP 20002). The flaw arises when parsing the slave_mac parameter, where user input is not properly validated before being used in a system call, enabling unauthenticated remote code execution with root privileges. Public r...