cbcvebase.
CVE-2023-39224
published 2023-09-06

CVE-2023-39224: Archer C5 firmware all versions and Archer C7 firmware versions prior to 'Archer C7(JP)_V2_230602' allow a network-adjacent authenticated attacker to execute…

PriorityP346high8CVSS 3.1
AVAACLPRLUINSUCHIHAH
EPSS
0.35%
26.8th percentile
Archer C5 firmware all versions and Archer C7 firmware versions prior to 'Archer C7(JP)_V2_230602' allow a network-adjacent authenticated attacker to execute arbitrary OS commands. Note that Archer C5 is no longer supported, therefore the update for this product is not provided.

Affected

3 ranges
VendorProductVersion rangeFixed in
tp-linkarcher_c5
tp-linkarcher_c7
tp-linkarcher_c7_firmware< 230602230602
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.