Tp-Link Tl-Wdr3500 Firmware vulnerabilities
2 known vulnerabilities affecting tp-link/tl-wdr3500_firmware.
Total CVEs
2
CISA KEV
1
actively exploited
Public exploits
1
Exploited in wild
1
Severity breakdown
HIGH2
Vulnerabilities
Page 1 of 1
CVE-2015-3035P1HIGHCVSS 7.5KEVPoCfixed in 1503022015-04-22
CVE-2015-3035 [HIGH] CWE-22 CVE-2015-3035: Directory traversal vulnerability in TP-LINK Archer C5 (1.2) with firmware before 150317, C7 (2.0) w
Directory traversal vulnerability in TP-LINK Archer C5 (1.2) with firmware before 150317, C7 (2.0) with firmware before 150304, and C8 (1.0) with firmware before 150316, Archer C9 (1.0), TL-WDR3500 (1.0), TL-WDR3600 (1.0), and TL-WDR4300 (1.0) with firmware before 150302, TL-WR740N (5.0) and TL-WR741ND (5.0) with firmware before 150312, and TL-WR841N (9.
nvd
CVE-2019-6487P2HIGHCVSS 8.8≤ 3.02019-01-18
CVE-2019-6487 [HIGH] CWE-78 CVE-2019-6487: TP-Link WDR Series devices through firmware v3 (such as TL-WDR5620 V3.0) are affected by command inj
TP-Link WDR Series devices through firmware v3 (such as TL-WDR5620 V3.0) are affected by command injection (after login) leading to remote code execution, because shell metacharacters can be included in the weather get_weather_observe citycode field.
nvd