Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
Vulnerability Details :

CVE-2017-8220

Summary
Assigner-mitre
Assigner Org ID-8254265b-2729-46b6-b9e3-3dfca2d5bfca
Published At-25 Apr, 2017 | 20:00
Updated At-17 Sep, 2024 | 00:56
Rejected At-
Credits

TP-Link C2 and C20i devices through firmware 0.9.1 4.2 v0032.0 Build 160706 Rel.37961n allow remote code execution with a single HTTP request by placing shell commands in a "host=" line within HTTP POST data.

Vendors
-
Not available
Products
-
Metrics (CVSS)
VersionBase scoreBase severityVector
Weaknesses
Attack Patterns
Solution/Workaround
References
HyperlinkResource Type
EPSS History
Score
Latest Score
-
N/A
No data available for selected date range
Percentile
Latest Percentile
-
N/A
No data available for selected date range
Stakeholder-Specific Vulnerability Categorization (SSVC)
▼Common Vulnerabilities and Exposures (CVE)
cve.org
Assigner:mitre
Assigner Org ID:8254265b-2729-46b6-b9e3-3dfca2d5bfca
Published At:25 Apr, 2017 | 20:00
Updated At:17 Sep, 2024 | 00:56
Rejected At:
▼CVE Numbering Authority (CNA)

TP-Link C2 and C20i devices through firmware 0.9.1 4.2 v0032.0 Build 160706 Rel.37961n allow remote code execution with a single HTTP request by placing shell commands in a "host=" line within HTTP POST data.

Affected Products
Vendor
n/a
Product
n/a
Versions
Affected
  • n/a
Problem Types
TypeCWE IDDescription
textN/An/a
Type: text
CWE ID: N/A
Description: n/a
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://pierrekim.github.io/blog/2017-02-09-tplink-c2-and-c20i-vulnerable.html
x_refsource_MISC
Hyperlink: https://pierrekim.github.io/blog/2017-02-09-tplink-c2-and-c20i-vulnerable.html
Resource:
x_refsource_MISC
▼Authorized Data Publishers (ADP)
CVE Program Container
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://pierrekim.github.io/blog/2017-02-09-tplink-c2-and-c20i-vulnerable.html
x_refsource_MISC
x_transferred
Hyperlink: https://pierrekim.github.io/blog/2017-02-09-tplink-c2-and-c20i-vulnerable.html
Resource:
x_refsource_MISC
x_transferred
Information is not available yet
▼National Vulnerability Database (NVD)
nvd.nist.gov
Source:cve@mitre.org
Published At:25 Apr, 2017 | 20:59
Updated At:13 May, 2026 | 00:24

TP-Link C2 and C20i devices through firmware 0.9.1 4.2 v0032.0 Build 160706 Rel.37961n allow remote code execution with a single HTTP request by placing shell commands in a "host=" line within HTTP POST data.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Date Added: N/A
Due Date: N/A
Vulnerability Name: N/A
Required Action: N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary3.09.9CRITICAL
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Primary2.09.0HIGH
AV:N/AC:L/Au:S/C:C/I:C/A:C
Type: Primary
Version: 3.0
Base score: 9.9
Base severity: CRITICAL
Vector:
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Type: Primary
Version: 2.0
Base score: 9.0
Base severity: HIGH
Vector:
AV:N/AC:L/Au:S/C:C/I:C/A:C
CPE Matches
TP-Link Systems Inc.
tp-link
>>c2_firmware>>Versions up to 0.9.1_4.2_v0032.0_build_160706(inclusive)
cpe:2.3:o:tp-link:c2_firmware:*:rel.37961n:*:*:*:*:*:*
TP-Link Systems Inc.
tp-link
>>c2>>-
cpe:2.3:h:tp-link:c2:-:*:*:*:*:*:*:*
TP-Link Systems Inc.
tp-link
>>c20i_firmware>>Versions up to 0.9.1_4.2_v0032.0_build_160706(inclusive)
cpe:2.3:o:tp-link:c20i_firmware:*:rel.37961n:*:*:*:*:*:*
TP-Link Systems Inc.
tp-link
>>c20i>>-
cpe:2.3:h:tp-link:c20i:-:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-78Primarynvd@nist.gov
CWE ID: CWE-78
Type: Primary
Source: nvd@nist.gov
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
https://pierrekim.github.io/blog/2017-02-09-tplink-c2-and-c20i-vulnerable.htmlcve@mitre.org
Exploit
Technical Description
Third Party Advisory
https://pierrekim.github.io/blog/2017-02-09-tplink-c2-and-c20i-vulnerable.htmlaf854a3a-2127-422b-91ae-364da2661108
Exploit
Technical Description
Third Party Advisory
Hyperlink: https://pierrekim.github.io/blog/2017-02-09-tplink-c2-and-c20i-vulnerable.html
Source: cve@mitre.org
Resource:
Exploit
Technical Description
Third Party Advisory
Hyperlink: https://pierrekim.github.io/blog/2017-02-09-tplink-c2-and-c20i-vulnerable.html
Source: af854a3a-2127-422b-91ae-364da2661108
Resource:
Exploit
Technical Description
Third Party Advisory

Change History

0
Information is not available yet

Similar CVEs

740Records found
CVE-2017-17758
Matching Score-10
Assigner-MITRE Corporation
ShareView Details
Matching Score-10
Assigner-MITRE Corporation
CVSS Score-8.8||HIGH
EPSS-1.28% / 80.03%
||
7 Day CHG~0.00%
Published-19 Dec, 2017 | 07:00
Updated-13 May, 2026 | 00:24
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

TP-Link TL-WVR and TL-WAR devices allow remote authenticated users to execute arbitrary commands via shell metacharacters in the interface field of an admin/dhcps command to cgi-bin/luci, related to the zone_get_iface_bydev function in /usr/lib/lua/luci/controller/admin/dhcps.lua in uhttpd.

Action-Not Available
Vendor-n/aTP-Link Systems Inc.
Product-tl-wvr1300l_firmwaretl-war1300ltl-wvr900l_firmwaretl-wvr458ltl-wvr1750l_firmwaretl-war450l_firmwaretl-war1750l_firmwaretl-wvr1200ltl-war1750ltl-war1200ltl-wvr2600l_firmwaretl-wvr1750ltl-war458ltl-wvr450l_firmwaretl-war900l_firmwaretl-war458l_firmwaretl-war450ltl-war1300l_firmwaretl-war900ltl-wvr1200l_firmwaretl-wvr1300ltl-wvr4300l_firmwaretl-wvr2600ltl-wvr900ltl-war1200l_firmwaretl-war2600ltl-wvr4300ltl-war2600l_firmwaretl-wvr450ltl-wvr458l_firmwaren/a
CWE ID-CWE-78
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
CVE-2020-12111
Matching Score-10
Assigner-MITRE Corporation
ShareView Details
Matching Score-10
Assigner-MITRE Corporation
CVSS Score-8.8||HIGH
EPSS-4.51% / 89.42%
||
7 Day CHG~0.00%
Published-04 May, 2020 | 14:05
Updated-04 Aug, 2024 | 11:48
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Certain TP-Link devices allow Command Injection. This affects NC260 1.5.2 build 200304 and NC450 1.5.3 build 200304.

Action-Not Available
Vendor-n/aTP-Link Systems Inc.
Product-nc260_firmwarenc450_firmwarenc260nc450n/a
CWE ID-CWE-78
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
CVE-2017-17757
Matching Score-10
Assigner-MITRE Corporation
ShareView Details
Matching Score-10
Assigner-MITRE Corporation
CVSS Score-8.8||HIGH
EPSS-1.28% / 80.03%
||
7 Day CHG~0.00%
Published-19 Dec, 2017 | 07:00
Updated-13 May, 2026 | 00:24
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

TP-Link TL-WVR and TL-WAR devices allow remote authenticated users to execute arbitrary commands via shell metacharacters in the interface field of an admin/wportal command to cgi-bin/luci, related to the get_device_byif function in /usr/lib/lua/luci/controller/admin/wportal.lua in uhttpd.

Action-Not Available
Vendor-n/aTP-Link Systems Inc.
Product-tl-wvr1300l_firmwaretl-war1300ltl-wvr900l_firmwaretl-wvr458ltl-wvr1750l_firmwaretl-war450l_firmwaretl-war1750l_firmwaretl-wvr1200ltl-war1750ltl-war1200ltl-wvr2600l_firmwaretl-wvr1750ltl-war458ltl-wvr450l_firmwaretl-war900l_firmwaretl-war458l_firmwaretl-war450ltl-war1300l_firmwaretl-war900ltl-wvr1200l_firmwaretl-wvr1300ltl-wvr4300l_firmwaretl-wvr2600ltl-wvr900ltl-war1200l_firmwaretl-war2600ltl-wvr4300ltl-war2600l_firmwaretl-wvr450ltl-wvr458l_firmwaren/a
CWE ID-CWE-78
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
CVE-2017-16958
Matching Score-10
Assigner-MITRE Corporation
ShareView Details
Matching Score-10
Assigner-MITRE Corporation
CVSS Score-8.8||HIGH
EPSS-1.37% / 80.69%
||
7 Day CHG~0.00%
Published-27 Nov, 2017 | 10:00
Updated-13 May, 2026 | 00:24
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

TP-Link TL-WVR, TL-WAR, TL-ER, and TL-R devices allow remote authenticated users to execute arbitrary commands via shell metacharacters in the t_bindif field of an admin/bridge command to cgi-bin/luci, related to the get_device_byif function in /usr/lib/lua/luci/controller/admin/bridge.lua in uhttpd.

Action-Not Available
Vendor-n/aTP-Link Systems Inc.
Product-tl-r479gp-ac_firmwaretl-r478g\+_firmwaretl-er5120gtl-war458tl-wvr1200ltl-r4239g_firmwaretl-er6120g_firmwaretl-r478\+tl-wvr458p_firmwaretl-wvr450tl-er5110g_firmwaretl-r473gtl-r483g_firmwaretl-war458ltl-wvr300_firmwaretl-war458l_firmwaretl-war450ltl-r4149g_firmwaretl-war900ltl-er5110gtl-r4299gtl-er6220gtl-r473p-actl-er6220g_firmwaretl-war2600ltl-er5120g_firmwaretl-r479p-ac_firmwaretl-wvr4300ltl-wvr302_firmwaretl-r473tl-er3220g_firmwaretl-wvr900l_firmwaretl-wvr900g_firmwaretl-war450l_firmwaretl-r479gpe-actl-war1750l_firmwaretl-wvr450g_firmwaretl-r478tl-war1200ltl-r483gtl-wvr450l_firmwaretl-war450tl-war302_firmwaretl-wvr1200l_firmwaretl-r479gp-actl-r478g\+tl-wvr2600ltl-r479p-actl-er3210g_firmwaretl-er3210gtl-er5510g_firmwaretl-war2600l_firmwaretl-r4299g_firmwaretl-wvr1750ltl-wvr458l_firmwaretl-er6510g_firmwaretl-er3220gtl-war1300gtl-er7520g_firmwaretl-war450_firmwaretl-wvr302tl-er6110gtl-r4149gtl-wvr458_firmwaretl-er5520g_firmwaretl-war1300l_firmwaretl-wvr450_firmwaretl-wvr900gtl-wvr1300ltl-r4239gtl-r478_firmwaretl-wvr4300l_firmwaretl-er7520gtl-r473g_firmwaretl-war302tl-war1200l_firmwaretl-r473p-ac_firmwaretl-er6110g_firmwaretl-wvr1300l_firmwaretl-r479gpe-ac_firmwaretl-war1300ltl-er6520gtl-wvr458ltl-wvr1750l_firmwaretl-wvr1300g_firmwaretl-wvr458tl-er5510gtl-er6120gtl-war1750ltl-r478g_firmwaretl-war458_firmwaretl-r483tl-r488tl-r483_firmwaretl-r478gtl-war900l_firmwaretl-wvr300tl-r473_firmwaretl-wvr450gtl-r478\+_firmwaretl-wvr458ptl-wvr900ltl-r488_firmwaretl-r473gp-actl-er6520g_firmwaretl-er6510gtl-wvr450ltl-er5520gn/a
CWE ID-CWE-78
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
CVE-2017-16957
Matching Score-10
Assigner-MITRE Corporation
ShareView Details
Matching Score-10
Assigner-MITRE Corporation
CVSS Score-8.8||HIGH
EPSS-2.89% / 86.68%
||
7 Day CHG~0.00%
Published-27 Nov, 2017 | 10:00
Updated-13 May, 2026 | 00:24
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

TP-Link TL-WVR, TL-WAR, TL-ER, and TL-R devices allow remote authenticated users to execute arbitrary commands via shell metacharacters in the iface field of an admin/diagnostic command to cgi-bin/luci, related to the zone_get_effect_devices function in /usr/lib/lua/luci/controller/admin/diagnostic.lua in uhttpd.

Action-Not Available
Vendor-n/aTP-Link Systems Inc.
Product-tl-r479gp-ac_firmwaretl-r478g\+_firmwaretl-er5120gtl-war458tl-wvr1200ltl-r4239g_firmwaretl-er6120g_firmwaretl-r478\+tl-wvr458p_firmwaretl-wvr450tl-er5110g_firmwaretl-r473gtl-r483g_firmwaretl-war458ltl-wvr300_firmwaretl-war458l_firmwaretl-war450ltl-r4149g_firmwaretl-war900ltl-er5110gtl-r4299gtl-er6220gtl-r473p-actl-er6220g_firmwaretl-war2600ltl-er5120g_firmwaretl-r479p-ac_firmwaretl-wvr4300ltl-wvr302_firmwaretl-r473tl-er3220g_firmwaretl-wvr900l_firmwaretl-wvr900g_firmwaretl-war450l_firmwaretl-r479gpe-actl-war1750l_firmwaretl-wvr450g_firmwaretl-r478tl-war1200ltl-r483gtl-wvr450l_firmwaretl-war450tl-war302_firmwaretl-wvr1200l_firmwaretl-r479gp-actl-r478g\+tl-wvr2600ltl-r479p-actl-er3210g_firmwaretl-er3210gtl-er5510g_firmwaretl-war2600l_firmwaretl-r4299g_firmwaretl-wvr1750ltl-wvr458l_firmwaretl-er6510g_firmwaretl-er3220gtl-war1300gtl-er7520g_firmwaretl-war450_firmwaretl-wvr302tl-er6110gtl-r4149gtl-wvr458_firmwaretl-er5520g_firmwaretl-war1300l_firmwaretl-wvr450_firmwaretl-wvr900gtl-wvr1300ltl-r4239gtl-r478_firmwaretl-wvr4300l_firmwaretl-er7520gtl-r473g_firmwaretl-war302tl-war1200l_firmwaretl-r473p-ac_firmwaretl-er6110g_firmwaretl-wvr1300l_firmwaretl-r479gpe-ac_firmwaretl-war1300ltl-er6520gtl-wvr458ltl-wvr1750l_firmwaretl-wvr1300g_firmwaretl-wvr458tl-er5510gtl-er6120gtl-war1750ltl-r478g_firmwaretl-war458_firmwaretl-r483tl-r488tl-r483_firmwaretl-r478gtl-war900l_firmwaretl-wvr300tl-r473_firmwaretl-wvr450gtl-r478\+_firmwaretl-wvr458ptl-wvr900ltl-r488_firmwaretl-r473gp-actl-er6520g_firmwaretl-er6510gtl-wvr450ltl-er5520gn/a
CWE ID-CWE-78
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
CVE-2017-16960
Matching Score-10
Assigner-MITRE Corporation
ShareView Details
Matching Score-10
Assigner-MITRE Corporation
CVSS Score-8.8||HIGH
EPSS-0.86% / 75.61%
||
7 Day CHG~0.00%
Published-27 Nov, 2017 | 10:00
Updated-13 May, 2026 | 00:24
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

TP-Link TL-WVR, TL-WAR, TL-ER, and TL-R devices allow remote authenticated users to execute arbitrary commands via shell metacharacters in the t_bindif field of an admin/interface command to cgi-bin/luci, related to the get_device_byif function in /usr/lib/lua/luci/controller/admin/interface.lua in uhttpd.

Action-Not Available
Vendor-n/aTP-Link Systems Inc.
Product-tl-r479gp-ac_firmwaretl-er5120gtl-war458tl-wvr1200ltl-r478\+tl-wvr458p_firmwaretl-wvr450tl-wvr2600l_firmwaretl-er5110g_firmwaretl-r473gtl-war458ltl-war458l_firmwaretl-war450ltl-r4149g_firmwaretl-war900ltl-er5110gtl-r4299gtl-er6220gtl-r473p-actl-er6220g_firmwaretl-war2600ltl-er5120g_firmwaretl-r479p-ac_firmwaretl-wvr4300ltl-r473tl-er3220g_firmwaretl-wvr900l_firmwaretl-war450l_firmwaretl-war1750l_firmwaretl-r479gpe-actl-r478tl-war1200ltl-r483gtl-wvr1300gtl-wvr450l_firmwaretl-war450tl-war302_firmwaretl-wvr1200l_firmwaretl-r479gp-actl-r478g\+tl-wvr2600ltl-r479p-actl-er3210g_firmwaretl-er3210gtl-war2600l_firmwaretl-wvr1750ltl-wvr458l_firmwaretl-er6510g_firmwaretl-er3220gtl-er7520g_firmwaretl-war450_firmwaretl-wvr302tl-er6110gtl-r4149gtl-wvr458_firmwaretl-war1300l_firmwaretl-wvr900gtl-r4239gtl-wvr450_firmwaretl-wvr1300ltl-wvr4300l_firmwaretl-er7520gtl-r473g_firmwaretl-war302tl-war1200l_firmwaretl-r473p-ac_firmwaretl-er6110g_firmwaretl-wvr1300l_firmwaretl-r473gp-ac_firmwaretl-er6520gtl-war1300ltl-r479gpe-ac_firmwaretl-wvr458ltl-wvr1750l_firmwaretl-wvr1300g_firmwaretl-er6120gtl-er5510gtl-wvr458tl-war1750ltl-r478g_firmwaretl-war458_firmwaretl-r483tl-r488tl-r478gtl-war900l_firmwaretl-wvr300tl-wvr450gtl-wvr458ptl-wvr900ltl-r473gp-actl-er6510gtl-wvr450ltl-er5520gn/a
CWE ID-CWE-78
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
CVE-2020-35576
Matching Score-10
Assigner-MITRE Corporation
ShareView Details
Matching Score-10
Assigner-MITRE Corporation
CVSS Score-8.8||HIGH
EPSS-71.23% / 98.74%
||
7 Day CHG~0.00%
Published-25 Jan, 2021 | 00:00
Updated-04 Aug, 2024 | 17:09
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

A Command Injection issue in the traceroute feature on TP-Link TL-WR841N V13 (JP) with firmware versions prior to 201216 allows authenticated users to execute arbitrary code as root via shell metacharacters, a different vulnerability than CVE-2018-12577.

Action-Not Available
Vendor-n/aTP-Link Systems Inc.
Product-tl-wr841ntl-wr841n_firmwaren/a
CWE ID-CWE-78
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
CVE-2020-24297
Matching Score-10
Assigner-MITRE Corporation
ShareView Details
Matching Score-10
Assigner-MITRE Corporation
CVSS Score-8.8||HIGH
EPSS-1.53% / 81.76%
||
7 Day CHG~0.00%
Published-18 Nov, 2020 | 15:28
Updated-04 Aug, 2024 | 15:12
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

httpd on TP-Link TL-WPA4220 devices (versions 2 through 4) allows remote authenticated users to execute arbitrary OS commands by sending crafted POST requests to the endpoint /admin/powerline. Fixed version: TL-WPA4220(EU)_V4_201023

Action-Not Available
Vendor-n/aTP-Link Systems Inc.
Product-tl-wpa4220_firmwaretl-wpa4220n/a
CWE ID-CWE-78
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
CVE-2020-12109
Matching Score-10
Assigner-MITRE Corporation
ShareView Details
Matching Score-10
Assigner-MITRE Corporation
CVSS Score-8.8||HIGH
EPSS-81.61% / 99.21%
||
7 Day CHG~0.00%
Published-04 May, 2020 | 15:06
Updated-04 Aug, 2024 | 11:48
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Certain TP-Link devices allow Command Injection. This affects NC200 2.1.9 build 200225, NC210 1.0.9 build 200304, NC220 1.3.0 build 200304, NC230 1.3.0 build 200304, NC250 1.3.0 build 200304, NC260 1.5.2 build 200304, and NC450 1.5.3 build 200304.

Action-Not Available
Vendor-n/aTP-Link Systems Inc.
Product-nc200_firmwarenc220nc450_firmwarenc250_firmwarenc260nc260_firmwarenc250nc210nc210_firmwarenc200nc230nc450nc230_firmwarenc220_firmwaren/a
CWE ID-CWE-78
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
CVE-2021-44827
Matching Score-10
Assigner-MITRE Corporation
ShareView Details
Matching Score-10
Assigner-MITRE Corporation
CVSS Score-8.8||HIGH
EPSS-44.63% / 97.66%
||
7 Day CHG~0.00%
Published-04 Mar, 2022 | 21:27
Updated-04 Aug, 2024 | 04:32
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

There is remote authenticated OS command injection on TP-Link Archer C20i 0.9.1 3.2 v003a.0 Build 170221 Rel.55462n devices vie the X_TP_ExternalIPv6Address HTTP parameter, allowing a remote attacker to run arbitrary commands on the router with root privileges.

Action-Not Available
Vendor-n/aTP-Link Systems Inc.
Product-archer_c20i_firmwarearcher_c20in/a
CWE ID-CWE-78
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
CVE-2018-19537
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.2||HIGH
EPSS-18.85% / 95.46%
||
7 Day CHG-0.77%
Published-26 Nov, 2018 | 03:00
Updated-05 Aug, 2024 | 11:37
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

TP-Link Archer C5 devices through V2_160201_US allow remote command execution via shell metacharacters on the wan_dyn_hostname line of a configuration file that is encrypted with the 478DA50BF9E3D2CF key and uploaded through the web GUI by using the web admin account. The default password of admin may be used in some cases.

Action-Not Available
Vendor-n/aTP-Link Systems Inc.
Product-archer_c5archer_c5_firmwaren/a
CWE ID-CWE-434
Unrestricted Upload of File with Dangerous Type
CVE-2018-16119
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.2||HIGH
EPSS-42.57% / 97.56%
||
7 Day CHG~0.00%
Published-20 Jun, 2019 | 15:51
Updated-05 Aug, 2024 | 10:17
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Stack-based buffer overflow in the httpd server of TP-Link WR1043nd (Firmware Version 3) allows remote attackers to execute arbitrary code via a malicious MediaServer request to /userRpm/MediaServerFoldersCfgRpm.htm.

Action-Not Available
Vendor-n/aTP-Link Systems Inc.
Product-tl-wr1043nd_firmwaretl-wr1043ndn/a
CWE ID-CWE-787
Out-of-bounds Write
CVE-2017-15615
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.2||HIGH
EPSS-1.39% / 80.84%
||
7 Day CHG~0.00%
Published-11 Jan, 2018 | 16:00
Updated-05 Aug, 2024 | 19:57
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the lcpechointerval variable in the pptp_client.lua file.

Action-Not Available
Vendor-n/aTP-Link Systems Inc.
Product-war2600l_firmwarewar1300lr4149ger5110g_firmwarer473g_firmwarer4149g_firmwareer5510gwvr458lwar458lr473wvr2600l_firmwarewar450l_firmwarewvr1300g_firmwarewar2600lwar1300l_firmwarer483_firmwarer4299g_firmwarewar900lwar1750l_firmwarewvr4300l_firmwareer5120g_firmwarewar900l_firmwarer478_firmwarewvr1300ger5520gr473gp-ac_firmwarer488_firmwarer478\+wvr1750lr473gr4239gwar302_firmwarewvr450l_firmwarewar302r488wvr1300lr473p-ac_firmwarewar1750lr483gwvr458l_firmwarewvr900lr473_firmwareer5510g_firmwarer4239g_firmwarer4299gwvr302wvr300war458wvr2600lwvr450lwar458_firmwarewvr300_firmwarewar450_firmwarewvr450_firmwarewvr900gr478wvr1750l_firmwarewvr900l_firmwarer478g\+wvr302_firmwareer5520g_firmwarer473gp-acwvr900g_firmwarewar450wvr4300lr483wvr450wvr1300l_firmwarer478g\+_firmwarewar458l_firmwarer478\+_firmwareer5110ger5120gr483g_firmwarewar450lr473p-acn/a
CVE-2017-15632
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.2||HIGH
EPSS-0.88% / 75.87%
||
7 Day CHG~0.00%
Published-11 Jan, 2018 | 16:00
Updated-05 Aug, 2024 | 19:57
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the new-mppeencryption variable in the pptp_server.lua file.

Action-Not Available
Vendor-n/aTP-Link Systems Inc.
Product-war2600l_firmwarewar1300lr4149ger5110g_firmwarer473g_firmwarer4149g_firmwareer5510gwvr458lwar458lr473wvr2600l_firmwarewar450l_firmwarewvr1300g_firmwarewar2600lwar1300l_firmwarer483_firmwarer4299g_firmwarewar900lwar1750l_firmwarewvr4300l_firmwareer5120g_firmwarewar900l_firmwarer478_firmwarewvr1300ger5520gr473gp-ac_firmwarer488_firmwarer478\+wvr1750lr473gr4239gwar302_firmwarewvr450l_firmwarewar302r488wvr1300lr473p-ac_firmwarewar1750lr483gwvr458l_firmwarewvr900lr473_firmwareer5510g_firmwarer4239g_firmwarer4299gwvr302wvr300war458wvr2600lwvr450lwar458_firmwarewvr300_firmwarewar450_firmwarewvr450_firmwarewvr900gr478wvr1750l_firmwarewvr900l_firmwarer478g\+wvr302_firmwareer5520g_firmwarer473gp-acwvr900g_firmwarewar450wvr4300lr483wvr450wvr1300l_firmwarer478g\+_firmwarewar458l_firmwarer478\+_firmwareer5110ger5120gr483g_firmwarewar450lr473p-acn/a
CVE-2020-8423
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.2||HIGH
EPSS-30.17% / 96.80%
||
7 Day CHG~0.00%
Published-02 Apr, 2020 | 17:00
Updated-04 Aug, 2024 | 09:56
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

A buffer overflow in the httpd daemon on TP-Link TL-WR841N V10 (firmware version 3.16.9) devices allows an authenticated remote attacker to execute arbitrary code via a GET request to the page for the configuration of the Wi-Fi network.

Action-Not Available
Vendor-n/aTP-Link Systems Inc.
Product-tl-wr841ntl-wr841n_firmwaren/a
CWE ID-CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
CVE-2017-15628
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.2||HIGH
EPSS-1.39% / 80.84%
||
7 Day CHG~0.00%
Published-11 Jan, 2018 | 16:00
Updated-05 Aug, 2024 | 19:57
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the lcpechointerval variable in the pptp_server.lua file.

Action-Not Available
Vendor-n/aTP-Link Systems Inc.
Product-war2600l_firmwarewar1300lr4149ger5110g_firmwarer473g_firmwarer4149g_firmwareer5510gwvr458lwar458lr473wvr2600l_firmwarewar450l_firmwarewvr1300g_firmwarewar2600lwar1300l_firmwarer483_firmwarer4299g_firmwarewar900lwar1750l_firmwarewvr4300l_firmwareer5120g_firmwarewar900l_firmwarer478_firmwarewvr1300ger5520gr473gp-ac_firmwarer488_firmwarer478\+wvr1750lr473gr4239gwar302_firmwarewvr450l_firmwarewar302r488wvr1300lr473p-ac_firmwarewar1750lr483gwvr458l_firmwarewvr900lr473_firmwareer5510g_firmwarer4239g_firmwarer4299gwvr302wvr300war458wvr2600lwvr450lwar458_firmwarewvr300_firmwarewar450_firmwarewvr450_firmwarewvr900gr478wvr1750l_firmwarewvr900l_firmwarer478g\+wvr302_firmwareer5520g_firmwarer473gp-acwvr900g_firmwarewar450wvr4300lr483wvr450wvr1300l_firmwarer478g\+_firmwarewar458l_firmwarer478\+_firmwareer5110ger5120gr483g_firmwarewar450lr473p-acn/a
CVE-2017-15614
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.2||HIGH
EPSS-1.39% / 80.84%
||
7 Day CHG~0.00%
Published-11 Jan, 2018 | 16:00
Updated-05 Aug, 2024 | 19:57
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the new-outif variable in the pptp_client.lua file.

Action-Not Available
Vendor-n/aTP-Link Systems Inc.
Product-war2600l_firmwarewar1300lr4149ger5110g_firmwarer473g_firmwarer4149g_firmwareer5510gwvr458lwar458lr473wvr2600l_firmwarewar450l_firmwarewvr1300g_firmwarewar2600lwar1300l_firmwarer483_firmwarer4299g_firmwarewar900lwar1750l_firmwarewvr4300l_firmwareer5120g_firmwarewar900l_firmwarer478_firmwarewvr1300ger5520gr473gp-ac_firmwarer488_firmwarer478\+wvr1750lr473gr4239gwar302_firmwarewvr450l_firmwarewar302r488wvr1300lr473p-ac_firmwarewar1750lr483gwvr458l_firmwarewvr900lr473_firmwareer5510g_firmwarer4239g_firmwarer4299gwvr302wvr300war458wvr2600lwvr450lwar458_firmwarewvr300_firmwarewar450_firmwarewvr450_firmwarewvr900gr478wvr1750l_firmwarewvr900l_firmwarer478g\+wvr302_firmwareer5520g_firmwarer473gp-acwvr900g_firmwarewar450wvr4300lr483wvr450wvr1300l_firmwarer478g\+_firmwarewar458l_firmwarer478\+_firmwareer5110ger5120gr483g_firmwarewar450lr473p-acn/a
CVE-2017-15621
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.2||HIGH
EPSS-1.39% / 80.84%
||
7 Day CHG~0.00%
Published-11 Jan, 2018 | 16:00
Updated-05 Aug, 2024 | 19:57
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the olmode variable in the interface_wan.lua file.

Action-Not Available
Vendor-n/aTP-Link Systems Inc.
Product-war2600l_firmwarewar1300lr4149ger5110g_firmwarer473g_firmwarer4149g_firmwareer5510gwvr458lwar458lr473wvr2600l_firmwarewar450l_firmwarewvr1300g_firmwarewar2600lwar1300l_firmwarer483_firmwarer4299g_firmwarewar900lwar1750l_firmwarewvr4300l_firmwareer5120g_firmwarewar900l_firmwarer478_firmwarewvr1300ger5520gr473gp-ac_firmwarer488_firmwarer478\+wvr1750lr473gr4239gwar302_firmwarewvr450l_firmwarewar302r488wvr1300lr473p-ac_firmwarewar1750lr483gwvr458l_firmwarewvr900lr473_firmwareer5510g_firmwarer4239g_firmwarer4299gwvr302wvr300war458wvr2600lwvr450lwar458_firmwarewvr300_firmwarewar450_firmwarewvr450_firmwarewvr900gr478wvr1750l_firmwarewvr900l_firmwarer478g\+wvr302_firmwareer5520g_firmwarer473gp-acwvr900g_firmwarewar450wvr4300lr483wvr450wvr1300l_firmwarer478g\+_firmwarewar458l_firmwarer478\+_firmwareer5110ger5120gr483g_firmwarewar450lr473p-acn/a
CVE-2020-13224
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-8.8||HIGH
EPSS-1.01% / 77.64%
||
7 Day CHG~0.00%
Published-17 Jun, 2020 | 12:13
Updated-04 Aug, 2024 | 12:11
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

TP-LINK NC200 devices through 2.1.10 build 200401, NC210 devices through 1.0.10 build 200401, NC220 devices through 1.3.1 build 200401, NC230 devices through 1.3.1 build 200401, NC250 devices through 1.3.1 build 200401, NC260 devices through 1.5.3 build_200401, and NC450 devices through 1.5.4 build 200401 have a Buffer Overflow

Action-Not Available
Vendor-n/aTP-Link Systems Inc.
Product-nc200_firmwarenc220nc450_firmwarenc250_firmwarenc260_firmwarenc260nc250nc210nc210_firmwarenc200nc230nc450nc230_firmwarenc220_firmwaren/a
CWE ID-CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
CVE-2025-5875
Matching Score-8
Assigner-VulDB
ShareView Details
Matching Score-8
Assigner-VulDB
CVSS Score-8.7||HIGH
EPSS-1.10% / 78.55%
||
7 Day CHG~0.00%
Published-09 Jun, 2025 | 11:31
Updated-23 Jun, 2025 | 14:21
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
TP-LINK Technologies TL-IPC544EP-W4 main sub_69064 buffer overflow

A vulnerability classified as critical has been found in TP-LINK Technologies TL-IPC544EP-W4 1.0.9 Build 240428 Rel 69493n. Affected is the function sub_69064 of the file /bin/main. The manipulation of the argument text leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Action-Not Available
Vendor-TP-LINK TechnologiesTP-Link Systems Inc.
Product-tl-ipc544ep-w4_firmwaretl-ipc544ep-w4TL-IPC544EP-W4
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CWE ID-CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
CVE-2019-6989
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-8.8||HIGH
EPSS-25.98% / 96.41%
||
7 Day CHG+6.89%
Published-06 Jun, 2019 | 17:24
Updated-04 Aug, 2024 | 20:38
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

TP-Link TL-WR940N is vulnerable to a stack-based buffer overflow, caused by improper bounds checking by the ipAddrDispose function. By sending specially crafted ICMP echo request packets, a remote authenticated attacker could overflow a buffer and execute arbitrary code on the system with elevated privileges.

Action-Not Available
Vendor-n/aTP-Link Systems Inc.
Product-tl-wr940ntl-wr940n_firmwaretl-wr941ndtl-wr941nd_firmwaren/a
CWE ID-CWE-787
Out-of-bounds Write
CVE-2017-15627
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.2||HIGH
EPSS-1.39% / 80.84%
||
7 Day CHG~0.00%
Published-11 Jan, 2018 | 16:00
Updated-05 Aug, 2024 | 19:57
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the new-pns variable in the pptp_client.lua file.

Action-Not Available
Vendor-n/aTP-Link Systems Inc.
Product-war2600l_firmwarewar1300lr4149ger5110g_firmwarer473g_firmwarer4149g_firmwareer5510gwvr458lwar458lr473wvr2600l_firmwarewar450l_firmwarewvr1300g_firmwarewar2600lwar1300l_firmwarer483_firmwarer4299g_firmwarewar900lwar1750l_firmwarewvr4300l_firmwareer5120g_firmwarewar900l_firmwarer478_firmwarewvr1300ger5520gr473gp-ac_firmwarer488_firmwarer478\+wvr1750lr473gr4239gwar302_firmwarewvr450l_firmwarewar302r488wvr1300lr473p-ac_firmwarewar1750lr483gwvr458l_firmwarewvr900lr473_firmwareer5510g_firmwarer4239g_firmwarer4299gwvr302wvr300war458wvr2600lwvr450lwar458_firmwarewvr300_firmwarewar450_firmwarewvr450_firmwarewvr900gr478wvr1750l_firmwarewvr900l_firmwarer478g\+wvr302_firmwareer5520g_firmwarer473gp-acwvr900g_firmwarewar450wvr4300lr483wvr450wvr1300l_firmwarer478g\+_firmwarewar458l_firmwarer478\+_firmwareer5110ger5120gr483g_firmwarewar450lr473p-acn/a
CVE-2017-15613
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.2||HIGH
EPSS-1.07% / 78.24%
||
7 Day CHG~0.00%
Published-11 Jan, 2018 | 16:00
Updated-05 Aug, 2024 | 19:57
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the new-interface variable in the cmxddns.lua file.

Action-Not Available
Vendor-n/aTP-Link Systems Inc.
Product-war2600l_firmwarewar1300lr4149ger5110g_firmwarer473g_firmwarer4149g_firmwareer5510gwvr458lwar458lr473wvr2600l_firmwarewar450l_firmwarewvr1300g_firmwarewar2600lwar1300l_firmwarer483_firmwarer4299g_firmwarewar900lwar1750l_firmwarewvr4300l_firmwareer5120g_firmwarewar900l_firmwarer478_firmwarewvr1300ger5520gr473gp-ac_firmwarer488_firmwarer478\+wvr1750lr473gr4239gwar302_firmwarewvr450l_firmwarewar302r488wvr1300lr473p-ac_firmwarewar1750lr483gwvr458l_firmwarewvr900lr473_firmwareer5510g_firmwarer4239g_firmwarer4299gwvr302wvr300war458wvr2600lwvr450lwar458_firmwarewvr300_firmwarewar450_firmwarewvr450_firmwarewvr900gr478wvr1750l_firmwarewvr900l_firmwarer478g\+wvr302_firmwareer5520g_firmwarer473gp-acwvr900g_firmwarewar450wvr4300lr483wvr450wvr1300l_firmwarer478g\+_firmwarewar458l_firmwarer478\+_firmwareer5110ger5120gr483g_firmwarewar450lr473p-acn/a
CVE-2017-15624
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.2||HIGH
EPSS-1.39% / 80.84%
||
7 Day CHG~0.00%
Published-11 Jan, 2018 | 16:00
Updated-05 Aug, 2024 | 19:57
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the new-authtype variable in the pptp_server.lua file.

Action-Not Available
Vendor-n/aTP-Link Systems Inc.
Product-war2600l_firmwarewar1300lr4149ger5110g_firmwarer473g_firmwarer4149g_firmwareer5510gwvr458lwar458lr473wvr2600l_firmwarewar450l_firmwarewvr1300g_firmwarewar2600lwar1300l_firmwarer483_firmwarer4299g_firmwarewar900lwar1750l_firmwarewvr4300l_firmwareer5120g_firmwarewar900l_firmwarer478_firmwarewvr1300ger5520gr473gp-ac_firmwarer488_firmwarer478\+wvr1750lr473gr4239gwar302_firmwarewvr450l_firmwarewar302r488wvr1300lr473p-ac_firmwarewar1750lr483gwvr458l_firmwarewvr900lr473_firmwareer5510g_firmwarer4239g_firmwarer4299gwvr302wvr300war458wvr2600lwvr450lwar458_firmwarewvr300_firmwarewar450_firmwarewvr450_firmwarewvr900gr478wvr1750l_firmwarewvr900l_firmwarer478g\+wvr302_firmwareer5520g_firmwarer473gp-acwvr900g_firmwarewar450wvr4300lr483wvr450wvr1300l_firmwarer478g\+_firmwarewar458l_firmwarer478\+_firmwareer5110ger5120gr483g_firmwarewar450lr473p-acn/a
CVE-2019-12104
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-8.8||HIGH
EPSS-6.93% / 91.64%
||
7 Day CHG~0.00%
Published-14 Aug, 2019 | 20:32
Updated-04 Aug, 2024 | 23:10
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

The web-based configuration interface of the TP-Link M7350 V3 with firmware before 190531 is affected by several post-authentication command injection vulnerabilities.

Action-Not Available
Vendor-n/aTP-Link Systems Inc.
Product-m7350_firmwarem7350n/a
CWE ID-CWE-77
Improper Neutralization of Special Elements used in a Command ('Command Injection')
CVE-2017-15637
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.2||HIGH
EPSS-1.07% / 78.24%
||
7 Day CHG~0.00%
Published-11 Jan, 2018 | 16:00
Updated-05 Aug, 2024 | 19:57
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the pptphellointerval variable in the pptp_server.lua file.

Action-Not Available
Vendor-n/aTP-Link Systems Inc.
Product-war2600l_firmwarewar1300lr4149ger5110g_firmwarer473g_firmwarer4149g_firmwareer5510gwvr458lwar458lr473wvr2600l_firmwarewar450l_firmwarewvr1300g_firmwarewar2600lwar1300l_firmwarer483_firmwarer4299g_firmwarewar900lwar1750l_firmwarewvr4300l_firmwareer5120g_firmwarewar900l_firmwarer478_firmwarewvr1300ger5520gr473gp-ac_firmwarer488_firmwarer478\+wvr1750lr473gr4239gwar302_firmwarewvr450l_firmwarewar302r488wvr1300lr473p-ac_firmwarewar1750lr483gwvr458l_firmwarewvr900lr473_firmwareer5510g_firmwarer4239g_firmwarer4299gwvr302wvr300war458wvr2600lwvr450lwar458_firmwarewvr300_firmwarewar450_firmwarewvr450_firmwarewvr900gr478wvr1750l_firmwarewvr900l_firmwarer478g\+wvr302_firmwareer5520g_firmwarer473gp-acwvr900g_firmwarewar450wvr4300lr483wvr450wvr1300l_firmwarer478g\+_firmwarewar458l_firmwarer478\+_firmwareer5110ger5120gr483g_firmwarewar450lr473p-acn/a
CVE-2017-15623
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.2||HIGH
EPSS-1.39% / 80.84%
||
7 Day CHG~0.00%
Published-11 Jan, 2018 | 16:00
Updated-05 Aug, 2024 | 19:57
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the new-enable variable in the pptp_server.lua file.

Action-Not Available
Vendor-n/aTP-Link Systems Inc.
Product-war2600l_firmwarewar1300lr4149ger5110g_firmwarer473g_firmwarer4149g_firmwareer5510gwvr458lwar458lr473wvr2600l_firmwarewar450l_firmwarewvr1300g_firmwarewar2600lwar1300l_firmwarer483_firmwarer4299g_firmwarewar900lwar1750l_firmwarewvr4300l_firmwareer5120g_firmwarewar900l_firmwarer478_firmwarewvr1300ger5520gr473gp-ac_firmwarer488_firmwarer478\+wvr1750lr473gr4239gwar302_firmwarewvr450l_firmwarewar302r488wvr1300lr473p-ac_firmwarewar1750lr483gwvr458l_firmwarewvr900lr473_firmwareer5510g_firmwarer4239g_firmwarer4299gwvr302wvr300war458wvr2600lwvr450lwar458_firmwarewvr300_firmwarewar450_firmwarewvr450_firmwarewvr900gr478wvr1750l_firmwarewvr900l_firmwarer478g\+wvr302_firmwareer5520g_firmwarer473gp-acwvr900g_firmwarewar450wvr4300lr483wvr450wvr1300l_firmwarer478g\+_firmwarewar458l_firmwarer478\+_firmwareer5110ger5120gr483g_firmwarewar450lr473p-acn/a
CVE-2017-15616
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.2||HIGH
EPSS-1.39% / 80.84%
||
7 Day CHG~0.00%
Published-11 Jan, 2018 | 16:00
Updated-05 Aug, 2024 | 19:57
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the new-interface variable in the phddns.lua file.

Action-Not Available
Vendor-n/aTP-Link Systems Inc.
Product-war2600l_firmwarewar1300lr4149ger5110g_firmwarer473g_firmwarer4149g_firmwareer5510gwvr458lwar458lr473wvr2600l_firmwarewar450l_firmwarewvr1300g_firmwarewar2600lwar1300l_firmwarer483_firmwarer4299g_firmwarewar900lwar1750l_firmwarewvr4300l_firmwareer5120g_firmwarewar900l_firmwarer478_firmwarewvr1300ger5520gr473gp-ac_firmwarer488_firmwarer478\+wvr1750lr473gr4239gwar302_firmwarewvr450l_firmwarewar302r488wvr1300lr473p-ac_firmwarewar1750lr483gwvr458l_firmwarewvr900lr473_firmwareer5510g_firmwarer4239g_firmwarer4299gwvr302wvr300war458wvr2600lwvr450lwar458_firmwarewvr300_firmwarewar450_firmwarewvr450_firmwarewvr900gr478wvr1750l_firmwarewvr900l_firmwarer478g\+wvr302_firmwareer5520g_firmwarer473gp-acwvr900g_firmwarewar450wvr4300lr483wvr450wvr1300l_firmwarer478g\+_firmwarewar458l_firmwarer478\+_firmwareer5110ger5120gr483g_firmwarewar450lr473p-acn/a
CVE-2017-15633
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.2||HIGH
EPSS-1.39% / 80.84%
||
7 Day CHG~0.00%
Published-11 Jan, 2018 | 16:00
Updated-05 Aug, 2024 | 19:57
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the new-ipgroup variable in the session_limits.lua file.

Action-Not Available
Vendor-n/aTP-Link Systems Inc.
Product-war2600l_firmwarewar1300lr4149ger5110g_firmwarer473g_firmwarer4149g_firmwareer5510gwvr458lwar458lr473wvr2600l_firmwarewar450l_firmwarewvr1300g_firmwarewar2600lwar1300l_firmwarer483_firmwarer4299g_firmwarewar900lwar1750l_firmwarewvr4300l_firmwareer5120g_firmwarewar900l_firmwarer478_firmwarewvr1300ger5520gr473gp-ac_firmwarer488_firmwarer478\+wvr1750lr473gr4239gwar302_firmwarewvr450l_firmwarewar302r488wvr1300lr473p-ac_firmwarewar1750lr483gwvr458l_firmwarewvr900lr473_firmwareer5510g_firmwarer4239g_firmwarer4299gwvr302wvr300war458wvr2600lwvr450lwar458_firmwarewvr300_firmwarewar450_firmwarewvr450_firmwarewvr900gr478wvr1750l_firmwarewvr900l_firmwarer478g\+wvr302_firmwareer5520g_firmwarer473gp-acwvr900g_firmwarewar450wvr4300lr483wvr450wvr1300l_firmwarer478g\+_firmwarewar458l_firmwarer478\+_firmwareer5110ger5120gr483g_firmwarewar450lr473p-acn/a
CVE-2017-15629
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.2||HIGH
EPSS-1.39% / 80.84%
||
7 Day CHG~0.00%
Published-11 Jan, 2018 | 16:00
Updated-05 Aug, 2024 | 19:57
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the new-tunnelname variable in the pptp_client.lua file.

Action-Not Available
Vendor-n/aTP-Link Systems Inc.
Product-war2600l_firmwarewar1300lr4149ger5110g_firmwarer473g_firmwarer4149g_firmwareer5510gwvr458lwar458lr473wvr2600l_firmwarewar450l_firmwarewvr1300g_firmwarewar2600lwar1300l_firmwarer483_firmwarer4299g_firmwarewar900lwar1750l_firmwarewvr4300l_firmwareer5120g_firmwarewar900l_firmwarer478_firmwarewvr1300ger5520gr473gp-ac_firmwarer488_firmwarer478\+wvr1750lr473gr4239gwar302_firmwarewvr450l_firmwarewar302r488wvr1300lr473p-ac_firmwarewar1750lr483gwvr458l_firmwarewvr900lr473_firmwareer5510g_firmwarer4239g_firmwarer4299gwvr302wvr300war458wvr2600lwvr450lwar458_firmwarewvr300_firmwarewar450_firmwarewvr450_firmwarewvr900gr478wvr1750l_firmwarewvr900l_firmwarer478g\+wvr302_firmwareer5520g_firmwarer473gp-acwvr900g_firmwarewar450wvr4300lr483wvr450wvr1300l_firmwarer478g\+_firmwarewar458l_firmwarer478\+_firmwareer5110ger5120gr483g_firmwarewar450lr473p-acn/a
CVE-2017-15631
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.2||HIGH
EPSS-1.39% / 80.84%
||
7 Day CHG~0.00%
Published-11 Jan, 2018 | 16:00
Updated-05 Aug, 2024 | 19:57
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the new-workmode variable in the pptp_client.lua file.

Action-Not Available
Vendor-n/aTP-Link Systems Inc.
Product-war2600l_firmwarewar1300lr4149ger5110g_firmwarer473g_firmwarer4149g_firmwareer5510gwvr458lwar458lr473wvr2600l_firmwarewar450l_firmwarewvr1300g_firmwarewar2600lwar1300l_firmwarer483_firmwarer4299g_firmwarewar900lwar1750l_firmwarewvr4300l_firmwareer5120g_firmwarewar900l_firmwarer478_firmwarewvr1300ger5520gr473gp-ac_firmwarer488_firmwarer478\+wvr1750lr473gr4239gwar302_firmwarewvr450l_firmwarewar302r488wvr1300lr473p-ac_firmwarewar1750lr483gwvr458l_firmwarewvr900lr473_firmwareer5510g_firmwarer4239g_firmwarer4299gwvr302wvr300war458wvr2600lwvr450lwar458_firmwarewvr300_firmwarewar450_firmwarewvr450_firmwarewvr900gr478wvr1750l_firmwarewvr900l_firmwarer478g\+wvr302_firmwareer5520g_firmwarer473gp-acwvr900g_firmwarewar450wvr4300lr483wvr450wvr1300l_firmwarer478g\+_firmwarewar458l_firmwarer478\+_firmwareer5110ger5120gr483g_firmwarewar450lr473p-acn/a
CVE-2017-15620
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.2||HIGH
EPSS-1.39% / 80.84%
||
7 Day CHG~0.00%
Published-11 Jan, 2018 | 16:00
Updated-05 Aug, 2024 | 19:57
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the new-zone variable in the ipmac_import.lua file.

Action-Not Available
Vendor-n/aTP-Link Systems Inc.
Product-war2600l_firmwarewar1300lr4149ger5110g_firmwarer473g_firmwarer4149g_firmwareer5510gwvr458lwar458lr473wvr2600l_firmwarewar450l_firmwarewvr1300g_firmwarewar2600lwar1300l_firmwarer483_firmwarer4299g_firmwarewar900lwar1750l_firmwarewvr4300l_firmwareer5120g_firmwarewar900l_firmwarer478_firmwarewvr1300ger5520gr473gp-ac_firmwarer488_firmwarer478\+wvr1750lr473gr4239gwar302_firmwarewvr450l_firmwarewar302r488wvr1300lr473p-ac_firmwarewar1750lr483gwvr458l_firmwarewvr900lr473_firmwareer5510g_firmwarer4239g_firmwarer4299gwvr302wvr300war458wvr2600lwvr450lwar458_firmwarewvr300_firmwarewar450_firmwarewvr450_firmwarewvr900gr478wvr1750l_firmwarewvr900l_firmwarer478g\+wvr302_firmwareer5520g_firmwarer473gp-acwvr900g_firmwarewar450wvr4300lr483wvr450wvr1300l_firmwarer478g\+_firmwarewar458l_firmwarer478\+_firmwareer5110ger5120gr483g_firmwarewar450lr473p-acn/a
CVE-2017-15618
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.2||HIGH
EPSS-1.39% / 80.84%
||
7 Day CHG~0.00%
Published-11 Jan, 2018 | 16:00
Updated-05 Aug, 2024 | 19:57
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the new-enable variable in the pptp_client.lua file.

Action-Not Available
Vendor-n/aTP-Link Systems Inc.
Product-war2600l_firmwarewar1300lr4149ger5110g_firmwarer473g_firmwarer4149g_firmwareer5510gwvr458lwar458lr473wvr2600l_firmwarewar450l_firmwarewvr1300g_firmwarewar2600lwar1300l_firmwarer483_firmwarer4299g_firmwarewar900lwar1750l_firmwarewvr4300l_firmwareer5120g_firmwarewar900l_firmwarer478_firmwarewvr1300ger5520gr473gp-ac_firmwarer488_firmwarer478\+wvr1750lr473gr4239gwar302_firmwarewvr450l_firmwarewar302r488wvr1300lr473p-ac_firmwarewar1750lr483gwvr458l_firmwarewvr900lr473_firmwareer5510g_firmwarer4239g_firmwarer4299gwvr302wvr300war458wvr2600lwvr450lwar458_firmwarewvr300_firmwarewar450_firmwarewvr450_firmwarewvr900gr478wvr1750l_firmwarewvr900l_firmwarer478g\+wvr302_firmwareer5520g_firmwarer473gp-acwvr900g_firmwarewar450wvr4300lr483wvr450wvr1300l_firmwarer478g\+_firmwarewar458l_firmwarer478\+_firmwareer5110ger5120gr483g_firmwarewar450lr473p-acn/a
CVE-2017-15617
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.2||HIGH
EPSS-1.39% / 80.84%
||
7 Day CHG~0.00%
Published-11 Jan, 2018 | 16:00
Updated-05 Aug, 2024 | 19:57
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the iface variable in the interface_wan.lua file.

Action-Not Available
Vendor-n/aTP-Link Systems Inc.
Product-war2600l_firmwarewar1300lr4149ger5110g_firmwarer473g_firmwarer4149g_firmwareer5510gwvr458lwar458lr473wvr2600l_firmwarewar450l_firmwarewvr1300g_firmwarewar2600lwar1300l_firmwarer483_firmwarer4299g_firmwarewar900lwar1750l_firmwarewvr4300l_firmwareer5120g_firmwarewar900l_firmwarer478_firmwarewvr1300ger5520gr473gp-ac_firmwarer488_firmwarer478\+wvr1750lr473gr4239gwar302_firmwarewvr450l_firmwarewar302r488wvr1300lr473p-ac_firmwarewar1750lr483gwvr458l_firmwarewvr900lr473_firmwareer5510g_firmwarer4239g_firmwarer4299gwvr302wvr300war458wvr2600lwvr450lwar458_firmwarewvr300_firmwarewar450_firmwarewvr450_firmwarewvr900gr478wvr1750l_firmwarewvr900l_firmwarer478g\+wvr302_firmwareer5520g_firmwarer473gp-acwvr900g_firmwarewar450wvr4300lr483wvr450wvr1300l_firmwarer478g\+_firmwarewar458l_firmwarer478\+_firmwareer5110ger5120gr483g_firmwarewar450lr473p-acn/a
CVE-2017-15634
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.2||HIGH
EPSS-1.39% / 80.84%
||
7 Day CHG~0.00%
Published-11 Jan, 2018 | 16:00
Updated-05 Aug, 2024 | 19:57
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the name variable in the wportal.lua file.

Action-Not Available
Vendor-n/aTP-Link Systems Inc.
Product-war2600l_firmwarewar1300lr4149ger5110g_firmwarer473g_firmwarer4149g_firmwareer5510gwvr458lwar458lr473wvr2600l_firmwarewar450l_firmwarewvr1300g_firmwarewar2600lwar1300l_firmwarer483_firmwarer4299g_firmwarewar900lwar1750l_firmwarewvr4300l_firmwareer5120g_firmwarewar900l_firmwarer478_firmwarewvr1300ger5520gr473gp-ac_firmwarer488_firmwarer478\+wvr1750lr473gr4239gwar302_firmwarewvr450l_firmwarewar302r488wvr1300lr473p-ac_firmwarewar1750lr483gwvr458l_firmwarewvr900lr473_firmwareer5510g_firmwarer4239g_firmwarer4299gwvr302wvr300war458wvr2600lwvr450lwar458_firmwarewvr300_firmwarewar450_firmwarewvr450_firmwarewvr900gr478wvr1750l_firmwarewvr900l_firmwarer478g\+wvr302_firmwareer5520g_firmwarer473gp-acwvr900g_firmwarewar450wvr4300lr483wvr450wvr1300l_firmwarer478g\+_firmwarewar458l_firmwarer478\+_firmwareer5110ger5120gr483g_firmwarewar450lr473p-acn/a
CVE-2017-15626
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.2||HIGH
EPSS-1.39% / 80.84%
||
7 Day CHG~0.00%
Published-11 Jan, 2018 | 16:00
Updated-05 Aug, 2024 | 19:57
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the new-bindif variable in the pptp_server.lua file.

Action-Not Available
Vendor-n/aTP-Link Systems Inc.
Product-war2600l_firmwarewar1300lr4149ger5110g_firmwarer473g_firmwarer4149g_firmwareer5510gwvr458lwar458lr473wvr2600l_firmwarewar450l_firmwarewvr1300g_firmwarewar2600lwar1300l_firmwarer483_firmwarer4299g_firmwarewar900lwar1750l_firmwarewvr4300l_firmwareer5120g_firmwarewar900l_firmwarer478_firmwarewvr1300ger5520gr473gp-ac_firmwarer488_firmwarer478\+wvr1750lr473gr4239gwar302_firmwarewvr450l_firmwarewar302r488wvr1300lr473p-ac_firmwarewar1750lr483gwvr458l_firmwarewvr900lr473_firmwareer5510g_firmwarer4239g_firmwarer4299gwvr302wvr300war458wvr2600lwvr450lwar458_firmwarewvr300_firmwarewar450_firmwarewvr450_firmwarewvr900gr478wvr1750l_firmwarewvr900l_firmwarer478g\+wvr302_firmwareer5520g_firmwarer473gp-acwvr900g_firmwarewar450wvr4300lr483wvr450wvr1300l_firmwarer478g\+_firmwarewar458l_firmwarer478\+_firmwareer5110ger5120gr483g_firmwarewar450lr473p-acn/a
CVE-2017-15622
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.2||HIGH
EPSS-0.88% / 75.87%
||
7 Day CHG~0.00%
Published-11 Jan, 2018 | 16:00
Updated-05 Aug, 2024 | 19:57
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the new-mppeencryption variable in the pptp_client.lua file.

Action-Not Available
Vendor-n/aTP-Link Systems Inc.
Product-war2600l_firmwarewar1300lr4149ger5110g_firmwarer473g_firmwarer4149g_firmwareer5510gwvr458lwar458lr473wvr2600l_firmwarewar450l_firmwarewvr1300g_firmwarewar2600lwar1300l_firmwarer483_firmwarer4299g_firmwarewar900lwar1750l_firmwarewvr4300l_firmwareer5120g_firmwarewar900l_firmwarer478_firmwarewvr1300ger5520gr473gp-ac_firmwarer488_firmwarer478\+wvr1750lr473gr4239gwar302_firmwarewvr450l_firmwarewar302r488wvr1300lr473p-ac_firmwarewar1750lr483gwvr458l_firmwarewvr900lr473_firmwareer5510g_firmwarer4239g_firmwarer4299gwvr302wvr300war458wvr2600lwvr450lwar458_firmwarewvr300_firmwarewar450_firmwarewvr450_firmwarewvr900gr478wvr1750l_firmwarewvr900l_firmwarer478g\+wvr302_firmwareer5520g_firmwarer473gp-acwvr900g_firmwarewar450wvr4300lr483wvr450wvr1300l_firmwarer478g\+_firmwarewar458l_firmwarer478\+_firmwareer5110ger5120gr483g_firmwarewar450lr473p-acn/a
CVE-2017-15630
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.2||HIGH
EPSS-1.39% / 80.84%
||
7 Day CHG~0.00%
Published-11 Jan, 2018 | 16:00
Updated-05 Aug, 2024 | 19:57
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the new-remotesubnet variable in the pptp_client.lua file.

Action-Not Available
Vendor-n/aTP-Link Systems Inc.
Product-war2600l_firmwarewar1300lr4149ger5110g_firmwarer473g_firmwarer4149g_firmwareer5510gwvr458lwar458lr473wvr2600l_firmwarewar450l_firmwarewvr1300g_firmwarewar2600lwar1300l_firmwarer483_firmwarer4299g_firmwarewar900lwar1750l_firmwarewvr4300l_firmwareer5120g_firmwarewar900l_firmwarer478_firmwarewvr1300ger5520gr473gp-ac_firmwarer488_firmwarer478\+wvr1750lr473gr4239gwar302_firmwarewvr450l_firmwarewar302r488wvr1300lr473p-ac_firmwarewar1750lr483gwvr458l_firmwarewvr900lr473_firmwareer5510g_firmwarer4239g_firmwarer4299gwvr302wvr300war458wvr2600lwvr450lwar458_firmwarewvr300_firmwarewar450_firmwarewvr450_firmwarewvr900gr478wvr1750l_firmwarewvr900l_firmwarer478g\+wvr302_firmwareer5520g_firmwarer473gp-acwvr900g_firmwarewar450wvr4300lr483wvr450wvr1300l_firmwarer478g\+_firmwarewar458l_firmwarer478\+_firmwareer5110ger5120gr483g_firmwarewar450lr473p-acn/a
CVE-2017-15619
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.2||HIGH
EPSS-1.39% / 80.84%
||
7 Day CHG~0.00%
Published-11 Jan, 2018 | 16:00
Updated-05 Aug, 2024 | 19:57
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the pptphellointerval variable in the pptp_client.lua file.

Action-Not Available
Vendor-n/aTP-Link Systems Inc.
Product-war2600l_firmwarewar1300lr4149ger5110g_firmwarer473g_firmwarer4149g_firmwareer5510gwvr458lwar458lr473wvr2600l_firmwarewar450l_firmwarewvr1300g_firmwarewar2600lwar1300l_firmwarer483_firmwarer4299g_firmwarewar900lwar1750l_firmwarewvr4300l_firmwareer5120g_firmwarewar900l_firmwarer478_firmwarewvr1300ger5520gr473gp-ac_firmwarer488_firmwarer478\+wvr1750lr473gr4239gwar302_firmwarewvr450l_firmwarewar302r488wvr1300lr473p-ac_firmwarewar1750lr483gwvr458l_firmwarewvr900lr473_firmwareer5510g_firmwarer4239g_firmwarer4299gwvr302wvr300war458wvr2600lwvr450lwar458_firmwarewvr300_firmwarewar450_firmwarewvr450_firmwarewvr900gr478wvr1750l_firmwarewvr900l_firmwarer478g\+wvr302_firmwareer5520g_firmwarer473gp-acwvr900g_firmwarewar450wvr4300lr483wvr450wvr1300l_firmwarer478g\+_firmwarewar458l_firmwarer478\+_firmwareer5110ger5120gr483g_firmwarewar450lr473p-acn/a
CVE-2017-15636
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.2||HIGH
EPSS-0.93% / 76.67%
||
7 Day CHG~0.00%
Published-11 Jan, 2018 | 16:00
Updated-05 Aug, 2024 | 19:57
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the new-time variable in the webfilter.lua file.

Action-Not Available
Vendor-n/aTP-Link Systems Inc.
Product-war2600l_firmwarewar1300lr4149ger5110g_firmwarer473g_firmwarer4149g_firmwareer5510gwvr458lwar458lr473wvr2600l_firmwarewar450l_firmwarewvr1300g_firmwarewar2600lwar1300l_firmwarer483_firmwarer4299g_firmwarewar900lwar1750l_firmwarewvr4300l_firmwareer5120g_firmwarewar900l_firmwarer478_firmwarewvr1300ger5520gr473gp-ac_firmwarer488_firmwarer478\+wvr1750lr473gr4239gwar302_firmwarewvr450l_firmwarewar302r488wvr1300lr473p-ac_firmwarewar1750lr483gwvr458l_firmwarewvr900lr473_firmwareer5510g_firmwarer4239g_firmwarer4299gwvr302wvr300war458wvr2600lwvr450lwar458_firmwarewvr300_firmwarewar450_firmwarewvr450_firmwarewvr900gr478wvr1750l_firmwarewvr900l_firmwarer478g\+wvr302_firmwareer5520g_firmwarer473gp-acwvr900g_firmwarewar450wvr4300lr483wvr450wvr1300l_firmwarer478g\+_firmwarewar458l_firmwarer478\+_firmwareer5110ger5120gr483g_firmwarewar450lr473p-acn/a
CVE-2017-15625
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.2||HIGH
EPSS-1.39% / 80.84%
||
7 Day CHG~0.00%
Published-11 Jan, 2018 | 16:00
Updated-05 Aug, 2024 | 19:57
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the new-olmode variable in the pptp_client.lua file.

Action-Not Available
Vendor-n/aTP-Link Systems Inc.
Product-war2600l_firmwarewar1300lr4149ger5110g_firmwarer473g_firmwarer4149g_firmwareer5510gwvr458lwar458lr473wvr2600l_firmwarewar450l_firmwarewvr1300g_firmwarewar2600lwar1300l_firmwarer483_firmwarer4299g_firmwarewar900lwar1750l_firmwarewvr4300l_firmwareer5120g_firmwarewar900l_firmwarer478_firmwarewvr1300ger5520gr473gp-ac_firmwarer488_firmwarer478\+wvr1750lr473gr4239gwar302_firmwarewvr450l_firmwarewar302r488wvr1300lr473p-ac_firmwarewar1750lr483gwvr458l_firmwarewvr900lr473_firmwareer5510g_firmwarer4239g_firmwarer4299gwvr302wvr300war458wvr2600lwvr450lwar458_firmwarewvr300_firmwarewar450_firmwarewvr450_firmwarewvr900gr478wvr1750l_firmwarewvr900l_firmwarer478g\+wvr302_firmwareer5520g_firmwarer473gp-acwvr900g_firmwarewar450wvr4300lr483wvr450wvr1300l_firmwarer478g\+_firmwarewar458l_firmwarer478\+_firmwareer5110ger5120gr483g_firmwarewar450lr473p-acn/a
CVE-2017-15635
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.2||HIGH
EPSS-1.39% / 80.84%
||
7 Day CHG~0.00%
Published-11 Jan, 2018 | 16:00
Updated-05 Aug, 2024 | 19:57
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the max_conn variable in the session_limits.lua file.

Action-Not Available
Vendor-n/aTP-Link Systems Inc.
Product-war2600l_firmwarewar1300lr4149ger5110g_firmwarer473g_firmwarer4149g_firmwareer5510gwvr458lwar458lr473wvr2600l_firmwarewar450l_firmwarewvr1300g_firmwarewar2600lwar1300l_firmwarer483_firmwarer4299g_firmwarewar900lwar1750l_firmwarewvr4300l_firmwareer5120g_firmwarewar900l_firmwarer478_firmwarewvr1300ger5520gr473gp-ac_firmwarer488_firmwarer478\+wvr1750lr473gr4239gwar302_firmwarewvr450l_firmwarewar302r488wvr1300lr473p-ac_firmwarewar1750lr483gwvr458l_firmwarewvr900lr473_firmwareer5510g_firmwarer4239g_firmwarer4299gwvr302wvr300war458wvr2600lwvr450lwar458_firmwarewvr300_firmwarewar450_firmwarewvr450_firmwarewvr900gr478wvr1750l_firmwarewvr900l_firmwarer478g\+wvr302_firmwareer5520g_firmwarer473gp-acwvr900g_firmwarewar450wvr4300lr483wvr450wvr1300l_firmwarer478g\+_firmwarewar458l_firmwarer478\+_firmwareer5110ger5120gr483g_firmwarewar450lr473p-acn/a
CVE-2017-13772
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-8.8||HIGH
EPSS-52.74% / 98.01%
||
7 Day CHG~0.00%
Published-23 Oct, 2017 | 18:00
Updated-13 May, 2026 | 00:24
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Multiple stack-based buffer overflows in TP-Link WR940N WiFi routers with hardware version 4 allow remote authenticated users to execute arbitrary code via the (1) ping_addr parameter to PingIframeRpm.htm or (2) dnsserver2 parameter to WanStaticIpV6CfgRpm.htm.

Action-Not Available
Vendor-n/aTP-Link Systems Inc.
Product-wr940n_firmwarewr940nn/a
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2021-46122
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.2||HIGH
EPSS-0.45% / 64.22%
||
7 Day CHG~0.00%
Published-18 Apr, 2022 | 15:27
Updated-04 Aug, 2024 | 05:02
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Tp-Link TL-WR840N (EU) v6.20 Firmware (0.9.1 4.17 v0001.0 Build 201124 Rel.64328n) is vulnerable to Buffer Overflow via the Password reset feature.

Action-Not Available
Vendor-n/aTP-Link Systems Inc.
Product-tl-wr840n_firmwaretl-wr840nn/a
CWE ID-CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
CVE-2021-42232
Matching Score-6
Assigner-MITRE Corporation
ShareView Details
Matching Score-6
Assigner-MITRE Corporation
CVSS Score-9.8||CRITICAL
EPSS-5.57% / 90.52%
||
7 Day CHG~0.00%
Published-23 Aug, 2022 | 00:41
Updated-04 Aug, 2024 | 03:30
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

TP-Link Archer A7 Archer A7(US)_V5_210519 is affected by a command injection vulnerability in /usr/bin/tddp. The vulnerability is caused by the program taking part of the received data packet as part of the command. This will cause an attacker to execute arbitrary commands on the router.

Action-Not Available
Vendor-n/aTP-Link Systems Inc.
Product-archer_a7archer_a7_firmwaren/a
CWE ID-CWE-78
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
CVE-2021-4144
Matching Score-6
Assigner-JPCERT/CC
ShareView Details
Matching Score-6
Assigner-JPCERT/CC
CVSS Score-8.8||HIGH
EPSS-1.71% / 82.83%
||
7 Day CHG~0.00%
Published-23 Dec, 2021 | 06:30
Updated-03 Aug, 2024 | 17:16
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

TP-Link wifi router TL-WR802N V4(JP), with firmware version prior to 211202, is vulnerable to OS command injection.

Action-Not Available
Vendor-TP-Link Systems Inc.
Product-tl-wr802n_firmwaretl-wr802nTL-WR802N V4(JP)
CWE ID-CWE-78
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
CVE-2026-22229
Matching Score-6
Assigner-TP-Link Systems Inc.
ShareView Details
Matching Score-6
Assigner-TP-Link Systems Inc.
CVSS Score-8.6||HIGH
EPSS-0.11% / 29.31%
||
7 Day CHG~0.00%
Published-02 Feb, 2026 | 17:58
Updated-02 Mar, 2026 | 18:16
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Command Injection Vulnerability on TP-Link Archer BE230 v1.2 and Deco BE25 v1.0

A command injection vulnerability may be exploited after the admin's authentication via the import of a crafted VPN client configuration file on the TP-Link Archer BE230 v1.2 and Deco BE25 v1.0. Successful exploitation could allow an attacker to gain full administrative control of the device, resulting in severe compromise of configuration integrity, network security, and service availability. This CVE covers one of multiple distinct OS command injection issues identified across separate code paths. Although similar in nature, each instance is tracked under a unique CVE ID. This issue affects Archer BE230 v1.2 < 1.2.4 Build 20251218 rel.70420 and Deco BE25 v1.0: through 1.1.1 Build 20250822.

Action-Not Available
Vendor-TP-Link Systems Inc.TP-Link Systems Inc.
Product-archer_be230_firmwarearcher_be230Archer BE230 v1.2Deco BE25 v1.0
CWE ID-CWE-78
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
CVE-2026-22224
Matching Score-6
Assigner-TP-Link Systems Inc.
ShareView Details
Matching Score-6
Assigner-TP-Link Systems Inc.
CVSS Score-8.5||HIGH
EPSS-0.94% / 76.75%
||
7 Day CHG~0.00%
Published-02 Feb, 2026 | 17:52
Updated-26 Feb, 2026 | 15:04
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Command Injection Vulnerability on TP-Link Archer BE230 v1.2

A command injection vulnerability may be exploited after the admin's authentication in the cloud communication interface on the TP-Link Archer BE230 v1.2. Successful exploitation could allow an attacker to gain full administrative control of the device, resulting in severe compromise of configuration integrity, network security, and service availability. This CVE covers one of multiple distinct OS command injection issues identified across separate code paths. Although similar in nature, each instance is tracked under a unique CVE ID. This issue affects Archer BE230 v1.2 < 1.2.4 Build 20251218 rel.70420.

Action-Not Available
Vendor-TP-Link Systems Inc.TP-Link Systems Inc.
Product-archer_be230archer_be230_firmwareArcher BE230 v1.2
CWE ID-CWE-78
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
CVE-2026-22225
Matching Score-6
Assigner-TP-Link Systems Inc.
ShareView Details
Matching Score-6
Assigner-TP-Link Systems Inc.
CVSS Score-8.5||HIGH
EPSS-0.52% / 67.33%
||
7 Day CHG~0.00%
Published-02 Feb, 2026 | 17:53
Updated-19 Mar, 2026 | 23:16
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Command Injection Vulnerability on TP-Link Archer BE230 v1.2 and AXE75 v1.0

A command injection vulnerability may be exploited after the admin's authentication in the VPN Connection Service on the Archer BE230 v1.2  and Archer AXE75 v1.0. Successful exploitation could allow an attacker to gain full administrative control of the device, resulting in severe compromise of configuration integrity, network security, and service availability. This CVE covers one of multiple distinct OS command injection issues identified across separate code paths. Although similar in nature, each instance is tracked under a unique CVE ID. This issue affects Archer BE230 v1.2 < 1.2.4 Build 20251218 rel.70420 and Archer AXE v1.0 < 1.5.3 Build 20260209 rel. 71108.

Action-Not Available
Vendor-TP Link Systems Inc.TP-Link Systems Inc.TP-Link Systems Inc.
Product-archer_be230_firmwarearcher_be230Archer AX53 v1.0Archer BE230 v1.2
CWE ID-CWE-78
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
CVE-2024-57357
Matching Score-6
Assigner-MITRE Corporation
ShareView Details
Matching Score-6
Assigner-MITRE Corporation
CVSS Score-8||HIGH
EPSS-12.20% / 94.02%
||
7 Day CHG~0.00%
Published-07 Feb, 2025 | 00:00
Updated-03 Jul, 2025 | 01:10
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

An issue in TPLINK TL-WPA 8630 TL-WPA8630(US)_V2_2.0.4 Build 20230427 allows a remote attacker to execute arbitrary code via function sub_4256CC, which allows command injection by injecting 'devpwd'.

Action-Not Available
Vendor-n/aTP-Link Systems Inc.
Product-tl-wpa8630tl-wpa8630_firmwaren/a
CWE ID-CWE-78
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
  • Previous
  • 1
  • 2
  • 3
  • ...
  • 14
  • 15
  • Next
Details not found