Описание
UNIX Symbolic Link (Symlink) Following in TP-Link Archer A7(US)_V5_200721 allows an authenticated admin user, with physical access and network access, to execute arbitrary code after plugging a crafted USB drive into the router.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:tp-link:archer_a7_firmware:200721:*:*:*:*:*:*:*
cpe:2.3:h:tp-link:archer_a7:v5:*:*:*:*:*:*:*
EPSS
Процентиль: 32%
0.00127
Низкий
6.2 Medium
CVSS3
7.2 High
CVSS2
Дефекты
CWE-59
Связанные уязвимости
github
больше 3 лет назад
UNIX Symbolic Link (Symlink) Following in TP-Link Archer A7(US)_V5_200721 allows an authenticated admin user, with physical access and network access, to execute arbitrary code after plugging a crafted USB drive into the router.
EPSS
Процентиль: 32%
0.00127
Низкий
6.2 Medium
CVSS3
7.2 High
CVSS2
Дефекты
CWE-59