Vulnerabilities > TP Link > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-03-25 | CVE-2020-10886 | OS Command Injection vulnerability in Tp-Link Ac1750 Firmware 190726 This vulnerability allows remote attackers to execute arbitrary code on affected installations of TP-Link Archer A7 Firmware Ver: 190726 AC1750 routers. | 9.8 |
| 2020-03-25 | CVE-2020-10885 | Improper Input Validation vulnerability in Tp-Link Ac1750 Firmware 190726 This vulnerability allows remote attackers to execute arbitrary code on affected installations of TP-Link Archer A7 Firmware Ver: 190726 AC1750 routers. | 9.8 |
| 2020-03-25 | CVE-2020-10881 | Out-of-bounds Write vulnerability in Tp-Link Ac1750 Firmware 190726 This vulnerability allows remote attackers to execute arbitrary code on affected installations of TP-Link Archer A7 Firmware Ver: 190726 AC1750 routers. | 9.8 |
| 2020-02-24 | CVE-2020-9374 | OS Command Injection vulnerability in Tp-Link Tl-Wr849N Firmware 0.9.14.16 On TP-Link TL-WR849N 0.9.1 4.16 devices, a remote command execution vulnerability in the diagnostics area can be exploited when an attacker sends specific shell metacharacters to the panel's traceroute feature. | 9.8 |
| 2020-01-29 | CVE-2013-2573 | OS Command Injection vulnerability in Tp-Link products A Command Injection vulnerability exists in the ap parameter to the /cgi-bin/mft/wireless_mft.cgi file in TP-Link IP Cameras TL-SC 3130, TL-SC 3130G, 3171G. | 9.8 |
| 2019-11-13 | CVE-2013-4654 | Path Traversal vulnerability in Tp-Link Tl-1043Nd Firmware and Tl-Wdr4300 Firmware Symlink Traversal vulnerability in TP-LINK TL-WDR4300 and TL-1043ND.. | 9.8 |
| 2019-10-24 | CVE-2019-13653 | OS Command Injection vulnerability in Tp-Link M7350 Firmware 1.0.16 TP-Link M7350 devices through 1.0.16 Build 181220 Rel.1116n allow triggerPort OS Command Injection (issue 5 of 5). | 9.8 |
| 2019-10-24 | CVE-2019-13652 | OS Command Injection vulnerability in Tp-Link M7350 Firmware 1.0.16 TP-Link M7350 devices through 1.0.16 Build 181220 Rel.1116n allow serviceName OS Command Injection (issue 4 of 5). | 9.8 |
| 2019-10-24 | CVE-2019-13651 | OS Command Injection vulnerability in Tp-Link M7350 Firmware 1.0.16 TP-Link M7350 devices through 1.0.16 Build 181220 Rel.1116n allow portMappingProtocol OS Command Injection (issue 3 of 5). | 9.8 |
| 2019-10-24 | CVE-2019-13650 | OS Command Injection vulnerability in Tp-Link M7350 Firmware 1.0.16 TP-Link M7350 devices through 1.0.16 Build 181220 Rel.1116n allow internalPort OS Command Injection (issue 2 of 5). | 9.8 |