Vulnerabilities > TP Link > Archer C50 > High

DATE CVE VULNERABILITY TITLE RISK
2020-06-08 CVE-2020-12695 Incorrect Default Permissions vulnerability in multiple products
The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subscription request with a delivery URL on a different network segment than the fully qualified event-subscription URL, aka the CallStranger issue.
7.5
2020-03-25 CVE-2020-9375 Missing Release of Resource after Effective Lifetime vulnerability in Tp-Link Archer C50 Build170822/Build171227/Build200318
TP-Link Archer C50 V3 devices before Build 200318 Rel.
network
low complexity
tp-link CWE-772
7.5