PT-2026-6103 · Tp Link · Archer Be230

Zeix

·

Publicado

2026-02-03

·

Atualizado

2026-02-03

·

CVE-2026-22220

CVSS v4.0

6.8

Média

VetorAV:A/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
Name of the Vulnerable Software and Affected Versions TP-Link Archer BE230 versions prior to 1.2.4 Build 20251218 rel.70420
Description A lack of proper input validation in the HTTP processing path within the web modules may allow a crafted request to cause the device’s web service to become unresponsive, leading to a denial of service. A network adjacent attacker with high privileges could cause the device’s web interface to temporarily stop responding until it recovers or is rebooted.
Recommendations Update to version 1.2.4 Build 20251218 rel.70420 or later.

Correção

DoS

RCE

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-20

Identificadores relacionados

CVE-2026-22220

Produtos afetados

Archer Be230