PT-2023-2937 · Tp Link · Tp-Link Archer C7

A2Ure

Publicado

2023-05-11

Atualizado

2025-01-24

CVE-2023-2646

CVSS v3.1

6.5

Média

Vetor

AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions TP-Link Archer C7v2 version v2 en us 180114

Description A vulnerability has been found in the component GET Request Parameter Handler, which can lead to denial of service when exploited. The attack can only be done within the local network. The issue is related to incorrect clearance or release of resources.

Recommendations For TP-Link Archer C7v2 version v2 en us 180114, as a temporary workaround, consider restricting access to the GET Request Parameter Handler component until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Improper Resource Release

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-404

Identificadores relacionados

BDU:2023-02939

CVE-2023-2646

Produtos afetados

Tp-Link Archer C7

PT-2023-2937 · Tp Link · Tp-Link Archer C7

CVE-2023-2646

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 7