Vulnerabilities > TP Link > M7350 Firmware > Critical

DATE CVE VULNERABILITY TITLE RISK
2022-09-12 CVE-2022-37860 OS Command Injection vulnerability in Tp-Link M7350 Firmware 190531
The web configuration interface of the TP-Link M7350 V3 with firmware version 190531 is affected by a pre-authentication command injection vulnerability.
network
low complexity
tp-link CWE-78
critical
9.8
2019-10-24 CVE-2019-13649 OS Command Injection vulnerability in Tp-Link M7350 Firmware 1.0.16
TP-Link M7350 devices through 1.0.16 Build 181220 Rel.1116n allow externalPort OS Command Injection (issue 1 of 5).
network
low complexity
tp-link CWE-78
critical
9.8
2019-10-24 CVE-2019-13650 OS Command Injection vulnerability in Tp-Link M7350 Firmware 1.0.16
TP-Link M7350 devices through 1.0.16 Build 181220 Rel.1116n allow internalPort OS Command Injection (issue 2 of 5).
network
low complexity
tp-link CWE-78
critical
9.8
2019-10-24 CVE-2019-13651 OS Command Injection vulnerability in Tp-Link M7350 Firmware 1.0.16
TP-Link M7350 devices through 1.0.16 Build 181220 Rel.1116n allow portMappingProtocol OS Command Injection (issue 3 of 5).
network
low complexity
tp-link CWE-78
critical
9.8
2019-10-24 CVE-2019-13652 OS Command Injection vulnerability in Tp-Link M7350 Firmware 1.0.16
TP-Link M7350 devices through 1.0.16 Build 181220 Rel.1116n allow serviceName OS Command Injection (issue 4 of 5).
network
low complexity
tp-link CWE-78
critical
9.8
2019-10-24 CVE-2019-13653 OS Command Injection vulnerability in Tp-Link M7350 Firmware 1.0.16
TP-Link M7350 devices through 1.0.16 Build 181220 Rel.1116n allow triggerPort OS Command Injection (issue 5 of 5).
network
low complexity
tp-link CWE-78
critical
9.8
2019-08-14 CVE-2019-12103 OS Command Injection vulnerability in Tp-Link M7350 Firmware 1.0.16/151021/160330
The web-based configuration interface of the TP-Link M7350 V3 with firmware before 190531 is affected by a pre-authentication command injection vulnerability.
network
low complexity
tp-link CWE-78
critical
9.8