Lilith >_>

**Name of the Vulnerable Software and Affected Versions** TP-Link Archer AX53 v1.0 versions prior to 1.7.1 Build 20260213 **Description** An OS command injection issue in the OpenVPN module allows an authenticated adjacent attacker to execute system commands. This occurs during the processing of a specially crafted configuration file due to insufficient input validation. Successful exploitation could lead to the modification of configuration files, disclosure of sensitive information, or compromise of device integrity. **Recommendations** Update to version 1.7.1 Build 20260213 or later.

**Name of the Vulnerable Software and Affected Versions** TP-Link Archer AX53 v1.0 versions prior to 1.7.1 Build 20260213 **Description** Insufficient input validation in the dnsmasq module allows an authenticated adjacent attacker to execute arbitrary code by processing a specially crafted configuration file. This OS command injection can lead to modified device configurations, unauthorized access to sensitive information, or compromised system integrity. **Recommendations** Update to version 1.7.1 Build 20260213 or later.

Name of the Vulnerable Software and Affected Versions TP-Link AX53 versions prior to 1.7.1 Build 20260213 Description A configuration issue in the OpenVPN module allows a nearby attacker with access to read arbitrary files when a malicious configuration file is processed. Successful exploitation could lead to unauthorized access to files on the device, potentially exposing sensitive information. Recommendations Update to version 1.7.1 Build 20260213 or later.

**Name of the Vulnerable Software and Affected Versions** TP-Link AX53 v1.0 versions prior to 1.7.1 Build 20260213 **Description** An external configuration control issue in the OpenVPN module allows an authenticated adjacent attacker to read arbitrary files when a malicious configuration file is processed. This can lead to unauthorized access to sensitive information on the device. **Recommendations** Update to version 1.7.1 Build 20260213 or later.

**Name of the Vulnerable Software and Affected Versions** TP-Link Archer AX53 v1.0 versions prior to 1.7.1 Build 20260213 **Description** A stack-based buffer overflow occurs in the `tmpServer` module. An authenticated adjacent attacker can trigger a segmentation fault and potentially execute arbitrary code by using a specially crafted configuration file. This may lead to a system crash, modification of device state, exposure of sensitive data, or compromise of device integrity. **Recommendations** Update to version 1.7.1 Build 20260213 or later.

**Name of the Vulnerable Software and Affected Versions** TP-Link Archer AX53 versions 1.0 through 1.3.1 Build 20241120 **Description** A heap-based buffer overflow exists in the tmpserver modules of the TP-Link Archer AX53. An authenticated attacker in a nearby network can trigger a segmentation fault or potentially execute arbitrary code by sending a crafted network packet. The crafted packet contains an excessive number of fields with zero-length values. **Recommendations** Update to a version later than 1.3.1 Build 20241120.

**Name of the Vulnerable Software and Affected Versions** TP-Link Archer AX53 versions 1.0 through 1.3.1 Build 20241120 **Description** A heap-based buffer overflow exists in the tmpserver modules of TP-Link Archer AX53. This flaw allows authenticated attackers in an adjacent network to trigger a segmentation fault or potentially execute arbitrary code by sending a crafted network packet. The packet contains a field exceeding the maximum expected length, leading to the overflow. **Recommendations** Update TP-Link Archer AX53 to a version later than 1.3.1 Build 20241120.

**Name of the Vulnerable Software and Affected Versions** TP-Link Archer AX53 versions 1.0 through 1.3.1 Build 20241120 **Description** A heap-based buffer overflow exists in the tmpserver modules of the TP-Link Archer AX53. An authenticated attacker in a nearby network can trigger a segmentation fault or potentially execute arbitrary code by sending a crafted network packet. The packet's length must exceed the maximum expected value to exploit this issue. **Recommendations** Update to a version later than 1.3.1 Build 20241120.

**Name of the Vulnerable Software and Affected Versions** TP-Link Archer AX53 versions 1.0 through 1.3.1 Build 20241120 **Description** A misconfiguration in the SSH hostkey within the tmpserver modules of TP-Link Archer AX53 allows attackers to potentially obtain device credentials. This is achievable through a man-in-the-middle (MITM) attack, which, if successful, could grant unauthorized access if the captured credentials are reused. **Recommendations** Update Archer AX53 to a version later than 1.3.1 Build 20241120.

**Name of the Vulnerable Software and Affected Versions** TP-Link Archer AX53 versions 1.0 through 1.3.1 Build 20241120 **Description** A heap-based buffer overflow exists in the tmpserver modules of TP-Link Archer AX53. An authenticated, adjacent attacker can trigger a segmentation fault or potentially execute arbitrary code by sending a specially crafted network packet. The packet contains a field with a length exceeding the maximum expected value. **Recommendations** Update TP-Link Archer AX53 to a version later than 1.3.1 Build 20241120.

**Name of the Vulnerable Software and Affected Versions** TP-Link Archer AX53 versions 1.0 through 1.3.1 Build 20241120 **Description** A heap-based buffer overflow exists in the tmpserver modules of TP-Link Archer AX53. An authenticated, adjacent attacker can trigger a segmentation fault or potentially execute arbitrary code by sending specially crafted network packets with an excessive number of host entries. **Recommendations** Update to a version later than 1.3.1 Build 20241120.

**Name of the Vulnerable Software and Affected Versions** TP-Link Archer AX53 versions 1.0 through 1.3.1 Build 20241120 **Description** A heap-based buffer overflow exists in the tmpserver modules of the TP-Link Archer AX53. An authenticated, adjacent attacker can trigger a segmentation fault or potentially execute arbitrary code by sending a specially crafted network packet. The packet's length must exceed the maximum expected value to exploit this issue. **Recommendations** Update Archer AX53 to a version later than 1.3.1 Build 20241120.

**Name of the Vulnerable Software and Affected Versions** TP-Link Archer AX53 versions 1.0 through 1.3.1 Build 20241120 **Description** A heap-based buffer overflow exists in the tmpserver modules of TP-Link Archer AX53. This flaw allows authenticated attackers in an adjacent network to trigger a segmentation fault or potentially execute arbitrary code. The issue stems from insufficient validation of a packet field, specifically its offset, which dictates the write location in memory. By manipulating this offset within a crafted packet, an attacker can redirect writes to arbitrary memory locations. **Recommendations** Update TP-Link Archer AX53 to a version later than 1.3.1 Build 20241120.

**Name of the Vulnerable Software and Affected Versions** TP-Link Archer AX53 versions 1.0 through 1.3.1 Build 20241120 **Description** A heap-based buffer overflow exists in the tmpserver modules of the TP-Link Archer AX53. An authenticated attacker in a nearby network can trigger a segmentation fault or potentially execute arbitrary code by sending a crafted network packet. The crafted packet contains an excessive number of fields with zero-length values. **Recommendations** Update to a version later than 1.3.1 Build 20241120.

**Name of the Vulnerable Software and Affected Versions** TP-Link Archer AX53 versions 1.0 through 1.3.1 Build 20241120 **Description** A heap-based buffer overflow exists in the tdpserver modules of the TP-Link Archer AX53. This flaw allows attackers on a nearby network to trigger a segmentation fault or potentially execute arbitrary code by sending a specially crafted network packet with a malicious field. **Recommendations** Update TP-Link Archer AX53 to a version later than 1.3.1 Build 20241120.

**Name of the Vulnerable Software and Affected Versions** GL-Inet GL-AXT1800 version 4.7.0 **Description** A flaw exists in the Over-The-Air (OTA) Update functionality that allows for a firmware downgrade. An attacker can use a specially crafted `.tar` file to trigger this issue. A man-in-the-middle attack can be used to exploit this flaw. **Recommendations** Update to a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Tenda AC6 version V02.03.01.110 Description: A firmware update vulnerability exists in the Firmware Signature Validation functionality. A specially crafted malicious file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Tenda AC6 version V02.03.01.110 Description: A denial of service issue exists in the HTTP Header Parsing functionality. A series of specially crafted HTTP requests can cause a reboot. An attacker can trigger this issue by sending multiple network packets. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Tenda AC6 versions V02.03.01.110 Description: A stack-based buffer overflow exists in the Cloud API functionality. A specially crafted HTTP response can lead to arbitrary code execution. An attacker can send an HTTP response to trigger this issue. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Tenda AC6 version V02.03.01.110 Description: An information disclosure issue exists in the `/goform/getproductInfo` functionality. Specially crafted network packets can lead to the disclosure of sensitive information. An attacker can send packets to trigger this issue. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.