CVE-2023-40357
published 2023-09-06CVE-2023-40357: Multiple TP-LINK products allow a network-adjacent authenticated attacker to execute arbitrary OS commands. Affected products/versions are as follows: Archer…
PriorityP347high8CVSS 3.1
AVAACLPRLUINSUCHIHAH
EPSS
0.42%
33.5th percentile
Multiple TP-LINK products allow a network-adjacent authenticated attacker to execute arbitrary OS commands. Affected products/versions are as follows: Archer AX50 firmware versions prior to 'Archer AX50(JP)_V1_230529', Archer A10 firmware versions prior to 'Archer A10(JP)_V2_230504', Archer AX10 firmware versions prior to 'Archer AX10(JP)_V1.2_230508', and Archer AX11000 firmware versions prior to 'Archer AX11000(JP)_V1_230523'.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| tp-link | archer_a10 | — | — |
| tp-link | archer_a10_firmware | <= 230504 | — |
| tp-link | archer_ax10 | — | — |
| tp-link | archer_ax10_firmware | < 230508 | 230508 |
| tp-link | archer_ax11000 | — | — |
| tp-link | archer_ax11000_firmware | < 230523 | 230523 |
| tp-link | archer_ax50 | — | — |
| tp-link | archer_ax50_firmware | < 230529 | 230529 |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://jvn.jp/en/vu/JVNVU99392903/https://www.tp-link.com/jp/support/download/archer-a10/#Firmwarehttps://www.tp-link.com/jp/support/download/archer-ax10/#Firmwarehttps://www.tp-link.com/jp/support/download/archer-ax11000/#Firmwarehttps://www.tp-link.com/jp/support/download/archer-ax50/#Firmwarehttps://jvn.jp/en/vu/JVNVU99392903/https://www.tp-link.com/jp/support/download/archer-a10/#Firmwarehttps://www.tp-link.com/jp/support/download/archer-ax10/#Firmwarehttps://www.tp-link.com/jp/support/download/archer-ax11000/#Firmwarehttps://www.tp-link.com/jp/support/download/archer-ax50/#Firmware
2023-09-06
Published