CVE-2023-39224
published 2023-09-06CVE-2023-39224: Archer C5 firmware all versions and Archer C7 firmware versions prior to 'Archer C7(JP)_V2_230602' allow a network-adjacent authenticated attacker to execute…
PriorityP346high8CVSS 3.1
AVAACLPRLUINSUCHIHAH
EPSS
0.35%
26.8th percentile
Archer C5 firmware all versions and Archer C7 firmware versions prior to 'Archer C7(JP)_V2_230602' allow a network-adjacent authenticated attacker to execute arbitrary OS commands. Note that Archer C5 is no longer supported, therefore the update for this product is not provided.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| tp-link | archer_c5 | — | — |
| tp-link | archer_c7 | — | — |
| tp-link | archer_c7_firmware | < 230602 | 230602 |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2023-09-06
Published