CVE-2017-8077

Name of the Vulnerable Software and Affected Versions TP-Link TL-SG108E version 1.0 TP-Link TL-SG108E firmware 1.1.2 Build 20141017 Rel.50749

Description The issue concerns a hard-coded ciphering key, which is a long string beginning with Ei2HNryt. This key is used for encryption purposes, but being hard-coded, it poses a security risk as it can be discovered and exploited by unauthorized parties.

Recommendations For TP-Link TL-SG108E version 1.0, consider updating the firmware to a version that does not contain the hard-coded ciphering key. For TP-Link TL-SG108E firmware 1.1.2 Build 20141017 Rel.50749, update the firmware to a newer version that addresses this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.