PT-2023-26513 · Tp Link · Archer C9+1
Published
2023-09-06
·
Updated
2023-09-11
·
CVE-2023-38563
CVSS v3.1
8.8
High
| Vector | AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Archer C1200 versions prior to Archer C1200(JP) V2 230508
Archer C9 versions prior to Archer C9(JP) V3 230508
Description
The issue allows a network-adjacent unauthenticated attacker to execute arbitrary OS commands.
Recommendations
For Archer C1200 versions prior to Archer C1200(JP) V2 230508, update to Archer C1200(JP) V2 230508 or later.
For Archer C9 versions prior to Archer C9(JP) V3 230508, update to Archer C9(JP) V3 230508 or later.
Fix
OS Command Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Archer C1200
Archer C9