Vulnerabilities > TP Link

DATE CVE VULNERABILITY TITLE RISK
2024-03-06 CVE-2023-43318 Unspecified vulnerability in Tp-Link Tl-Sg2210P Firmware 5.0
TP-Link JetStream Smart Switch TL-SG2210P 5.0 Build 20211201 allows attackers to escalate privileges via modification of the 'tid' and 'usrlvl' values in GET requests.
network
low complexity
tp-link
8.8
2024-02-06 CVE-2023-36498 OS Command Injection vulnerability in Tp-Link Er7206 Firmware 1.3.0
A post-authentication command injection vulnerability exists in the PPTP client functionality of Tp-Link ER7206 Omada Gigabit VPN Router 1.3.0 build 20230322 Rel.70591.
network
low complexity
tp-link CWE-78
7.2
2024-02-06 CVE-2023-42664 OS Command Injection vulnerability in Tp-Link Er7206 Firmware 1.3.0
A post authentication command injection vulnerability exists when setting up the PPTP global configuration of Tp-Link ER7206 Omada Gigabit VPN Router 1.3.0 build 20230322 Rel.70591.
network
low complexity
tp-link CWE-78
7.2
2024-02-06 CVE-2023-43482 OS Command Injection vulnerability in Tp-Link Er7206 Firmware 1.3.0
A command execution vulnerability exists in the guest resource functionality of Tp-Link ER7206 Omada Gigabit VPN Router 1.3.0 build 20230322 Rel.70591.
network
low complexity
tp-link CWE-78
7.2
2024-02-06 CVE-2023-46683 OS Command Injection vulnerability in Tp-Link Er7206 Firmware 1.3.0
A post authentication command injection vulnerability exists when configuring the wireguard VPN functionality of Tp-Link ER7206 Omada Gigabit VPN Router 1.3.0 build 20230322 Rel.70591.
network
low complexity
tp-link CWE-78
7.2
2024-02-06 CVE-2023-47167 OS Command Injection vulnerability in Tp-Link Er7206 Firmware 1.3.0
A post authentication command injection vulnerability exists in the GRE policy functionality of Tp-Link ER7206 Omada Gigabit VPN Router 1.3.0 build 20230322 Rel.70591.
network
low complexity
tp-link CWE-78
7.2
2024-02-06 CVE-2023-47209 OS Command Injection vulnerability in Tp-Link Er7206 Firmware 1.3.0
A post authentication command injection vulnerability exists in the ipsec policy functionality of Tp-Link ER7206 Omada Gigabit VPN Router 1.3.0 build 20230322 Rel.70591.
network
low complexity
tp-link CWE-78
7.2
2024-02-06 CVE-2023-47617 OS Command Injection vulnerability in Tp-Link Er7206 Firmware 1.3.0
A post authentication command injection vulnerability exists when configuring the web group member of Tp-Link ER7206 Omada Gigabit VPN Router 1.3.0 build 20230322 Rel.70591.
network
low complexity
tp-link CWE-78
7.2
2024-02-06 CVE-2023-47618 OS Command Injection vulnerability in Tp-Link Er7206 Firmware 1.3.0
A post authentication command execution vulnerability exists in the web filtering functionality of Tp-Link ER7206 Omada Gigabit VPN Router 1.3.0 build 20230322 Rel.70591.
network
low complexity
tp-link CWE-78
7.2
2024-01-17 CVE-2023-49515 Unspecified vulnerability in Tp-Link Tapo C200 Firmware and Tapo Tc70 Firmware
Insecure Permissiosn vulnerability in TP Link TC70 and C200 WIFI Camera v.3 firmware v.1.3.4 and fixed in v.1.3.11 allows a physically proximate attacker to obtain sensitive information via a connection to the UART pin components.
low complexity
tp-link
4.6