Today > 5 Critical | 6 High | 28 Medium vulnerabilities   -   You can now download lists of IOCs here!

CVE-2024-38471

July 4, 2024, 1:15 a.m.

Tags

vultures@jpcert.or.jp
2024-07-04
CVE-2024-38471

Product(s) Impacted

TP-LINK

Description

Multiple TP-LINK products allow a network-adjacent attacker with an administrative privilege to execute arbitrary OS commands by restoring a crafted backup file. The affected device, with the initial configuration, allows login only from the LAN port or Wi-Fi.

Weaknesses

Date

Published: July 4, 2024, 1:15 a.m.

Last Modified: July 4, 2024, 1:15 a.m.

Status : Received

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

vultures@jpcert.or.jp

References

https://jvn.jp/ vultures@jpcert.or.jp
https://www.tp-link.com/ vultures@jpcert.or.jp
https://www.tp-link.com/ vultures@jpcert.or.jp
https://www.tp-link.com/ vultures@jpcert.or.jp
https://www.tp-link.com/ vultures@jpcert.or.jp
https://www.tp-link.com/ vultures@jpcert.or.jp
https://www.tp-link.com/ vultures@jpcert.or.jp