PT-2017-18104 · Tp Link · Tp-Link Tl-Sg108E

Publicado

2017-04-23

Atualizado

2017-04-27

CVE-2017-8076

CVSS v3.1

9.8

Crítica

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions TP-Link TL-SG108E version 1.0

Description The issue concerns the use of RC4 encoding for admin network communications, despite RC4 being deprecated. This affects the 1.1.2 Build 20141017 Rel.50749 firmware.

Recommendations For TP-Link TL-SG108E version 1.0, consider updating the firmware to a version that does not use RC4 encoding for admin network communications. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Inadequate Encryption Strength

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-326

Identificadores relacionados

CVE-2017-8076

Produtos afetados

Tp-Link Tl-Sg108E

PT-2017-18104 · Tp Link · Tp-Link Tl-Sg108E

CVE-2017-8076

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 3