Vulnerabilities > TP Link > Critical

DATE CVE VULNERABILITY TITLE RISK
2020-03-25 CVE-2020-10887 Unspecified vulnerability in Tp-Link Ac1750 Firmware 190726
This vulnerability allows a firewall bypass on affected installations of TP-Link Archer A7 Firmware Ver: 190726 AC1750 routers.
network
low complexity
tp-link
critical
9.8
2020-03-25 CVE-2020-10886 OS Command Injection vulnerability in Tp-Link Ac1750 Firmware 190726
This vulnerability allows remote attackers to execute arbitrary code on affected installations of TP-Link Archer A7 Firmware Ver: 190726 AC1750 routers.
network
low complexity
tp-link CWE-78
critical
9.8
2020-03-25 CVE-2020-10885 Improper Input Validation vulnerability in Tp-Link Ac1750 Firmware 190726
This vulnerability allows remote attackers to execute arbitrary code on affected installations of TP-Link Archer A7 Firmware Ver: 190726 AC1750 routers.
network
low complexity
tp-link CWE-20
critical
9.8
2020-03-25 CVE-2020-10881 Out-of-bounds Write vulnerability in Tp-Link Ac1750 Firmware 190726
This vulnerability allows remote attackers to execute arbitrary code on affected installations of TP-Link Archer A7 Firmware Ver: 190726 AC1750 routers.
network
low complexity
tp-link CWE-787
critical
9.8
2020-02-24 CVE-2020-9374 OS Command Injection vulnerability in Tp-Link Tl-Wr849N Firmware 0.9.14.16
On TP-Link TL-WR849N 0.9.1 4.16 devices, a remote command execution vulnerability in the diagnostics area can be exploited when an attacker sends specific shell metacharacters to the panel's traceroute feature.
network
low complexity
tp-link CWE-78
critical
9.8
2020-01-29 CVE-2013-2573 OS Command Injection vulnerability in Tp-Link products
A Command Injection vulnerability exists in the ap parameter to the /cgi-bin/mft/wireless_mft.cgi file in TP-Link IP Cameras TL-SC 3130, TL-SC 3130G, 3171G.
network
low complexity
tp-link CWE-78
critical
9.8
2019-11-13 CVE-2013-4654 Path Traversal vulnerability in Tp-Link Tl-1043Nd Firmware and Tl-Wdr4300 Firmware
Symlink Traversal vulnerability in TP-LINK TL-WDR4300 and TL-1043ND..
network
low complexity
tp-link CWE-22
critical
9.8
2019-10-24 CVE-2019-13653 OS Command Injection vulnerability in Tp-Link M7350 Firmware 1.0.16
TP-Link M7350 devices through 1.0.16 Build 181220 Rel.1116n allow triggerPort OS Command Injection (issue 5 of 5).
network
low complexity
tp-link CWE-78
critical
9.8
2019-10-24 CVE-2019-13652 OS Command Injection vulnerability in Tp-Link M7350 Firmware 1.0.16
TP-Link M7350 devices through 1.0.16 Build 181220 Rel.1116n allow serviceName OS Command Injection (issue 4 of 5).
network
low complexity
tp-link CWE-78
critical
9.8
2019-10-24 CVE-2019-13651 OS Command Injection vulnerability in Tp-Link M7350 Firmware 1.0.16
TP-Link M7350 devices through 1.0.16 Build 181220 Rel.1116n allow portMappingProtocol OS Command Injection (issue 3 of 5).
network
low complexity
tp-link CWE-78
critical
9.8