6 matches found
CVE-2018-5393
The CVE-2018-5393 issue affects TP-LINK EAP Controller (incl. Linux) with RMI-based remote control and no authentication for RMI commands in versions 2.5.3 and earlier. A deserialization attack over Java RMI could allow a remote attacker to take control of the target server and execute Java funct...
CVE-2018-10166
The CVE-2018-10166 issue affects TP-Link EAP Controller and Omada Controller (versions 2.5.4_Windows / 2.6.0_Windows). The web management interface lacks Anti-CSRF tokens in forms, enabling authenticated actions from a user visiting a controlled domain. Core Security details confirm PoCs: ability...
CVE-2018-10167
TP-Link EAP Controller and Omada Controller (Windows) versions 2.5.4_Windows and 2.6.0_Windows are affected by CVE-2018-10167 due to a hard-coded cryptographic key used to encrypt the web app backup file. A low-privilege user can decrypt and modify the backup to escalate privileges, including cre...
CVE-2018-10168
CVE-2018-10168 affects TP-Link EAP Controller and Omada Controller (v2.5.4_Windows and v2.6.0_Windows). Root causes include improper privilege management on the Web API (allowing a low-privilege user to perform admin actions), a hard-coded key used to encrypt the backup file enabling decryption/m...
CVE-2018-10164
Summary: CVE-2018-10164 is a stored XSS vulnerability in TP-Link EAP Controller and Omada Controller. Affected versions are 2.5.4_Windows and 2.6.0_Windows. The issue arises via portalPictureUpload, enabling an authenticated attacker to inject arbitrary web script/HTML. TP-Link fixed the flaw in ...
CVE-2018-10165
TP-Link EAP Controller/Omada Controller (Windows) versions 2.5.4_Windows and 2.6.0_Windows are affected by CVE-2018-10165 (stored XSS) via the userName field in local user creation. Related issues include CVE-2018-10166 (CSRF in Web UI), CVE-2018-10167 (backup decryptor with hard-coded key), CVE-...