cbcvebase.

Tp-Link Archer C50 vulnerabilities

4 known vulnerabilities affecting tp-link/archer_c50.

Total CVEs
4
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH3MEDIUM1

Vulnerabilities

Page 1 of 1
CVE-2020-9375P3HIGHCVSS 7.5PoCvbuild_170822vbuild_171227+1 more2020-03-25
CVE-2020-9375 [HIGH] CWE-772 CVE-2020-9375: TP-Link Archer C50 V3 devices before Build 200318 Rel. 62209 allows remote attackers to cause a deni TP-Link Archer C50 V3 devices before Build 200318 Rel. 62209 allows remote attackers to cause a denial of service via a crafted HTTP Header containing an unexpected Referer field.
nvd
CVE-2023-32619P3HIGHCVSS 8.8vfirmware versions prior to 'Archer C50(JP)_V3_230505'2023-09-06
CVE-2023-32619 [HIGH] CWE-798 CVE-2023-32619: Archer C50 firmware versions prior to 'Archer C50(JP)_V3_230505' and Archer C55 firmware versions pr Archer C50 firmware versions prior to 'Archer C50(JP)_V3_230505' and Archer C55 firmware versions prior to 'Archer C55(JP)_V1_230506' use hard-coded credentials to login to the affected device, which may allow a network-adjacent unauthenticated attacker to execute an arbitrary OS command.
nvd
CVE-2023-31188P3HIGHCVSS 8.0vfirmware versions prior to 'Archer C50(JP)_V3_230505'2023-09-06
CVE-2023-31188 [HIGH] CWE-78 CVE-2023-31188: Multiple TP-LINK products allow a network-adjacent authenticated attacker to execute arbitrary OS co Multiple TP-LINK products allow a network-adjacent authenticated attacker to execute arbitrary OS commands. Affected products/versions are as follows: Archer C50 firmware versions prior to 'Archer C50(JP)_V3_230505', Archer C55 firmware versions prior to 'Archer C55(JP)_V1_230506', and Archer C20 firmware versions prior to 'Archer C20(JP)_V1_230616'.
nvd
CVE-2023-0936P4MEDIUMCVSS 6.5vv2_160801vV2_1608012023-02-21
CVE-2023-0936 [MEDIUM] CWE-404 CVE-2023-0936: A vulnerability was found in TP-Link Archer C50 V2_160801. It has been rated as problematic. Affecte A vulnerability was found in TP-Link Archer C50 V2_160801. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Web Management Interface. The manipulation leads to denial of service. The attack can only be initiated within the local network. The exploit has been disclosed to the public and may be used
nvd
Tp-Link Archer C50 vulnerabilities | cvebase