CVE-2024-21821
published 2024-01-11CVE-2024-21821: Multiple TP-LINK products allow a network-adjacent authenticated attacker with access to the product from the LAN port or Wi-Fi to execute arbitrary OS…
PriorityP346high8CVSS 3.1
AVAACLPRLUINSUCHIHAH
EPSS
0.45%
35.6th percentile
Multiple TP-LINK products allow a network-adjacent authenticated attacker with access to the product from the LAN port or Wi-Fi to execute arbitrary OS commands.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| tp-link | archer_air_r5 | — | — |
| tp-link | archer_ax3000 | — | — |
| tp-link | archer_ax3000_firmware | < 1.1.2 | 1.1.2 |
| tp-link | archer_ax5400 | — | — |
| tp-link | archer_ax5400_firmware | < 1.1.2 | 1.1.2 |
| tp-link | archer_axe75 | — | — |
| tp-link | archer_axe75_firmware | < 1.1.9 | 1.1.9 |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://jvn.jp/en/vu/JVNVU91401812/https://www.tp-link.com/jp/support/download/archer-air-r5/v1/#Firmwarehttps://www.tp-link.com/jp/support/download/archer-ax3000/#Firmwarehttps://www.tp-link.com/jp/support/download/archer-ax5400/#Firmwarehttps://www.tp-link.com/jp/support/download/archer-axe75/#Firmwarehttps://jvn.jp/en/vu/JVNVU91401812/https://www.tp-link.com/jp/support/download/archer-air-r5/v1/#Firmwarehttps://www.tp-link.com/jp/support/download/archer-ax3000/#Firmwarehttps://www.tp-link.com/jp/support/download/archer-ax5400/#Firmwarehttps://www.tp-link.com/jp/support/download/archer-axe75/#Firmware
2024-01-11
Published