CVE-2023-29562

Name of the Vulnerable Software and Affected Versions TP-Link TL-WPA7510 (EU) version V2 190125

Description The issue is related to a stack overflow via the operation parameter at the "/admin/locale" API endpoint. This can be exploited by a remote attacker to execute arbitrary commands. The vulnerability is associated with a buffer overflow in memory, allowing data to be written beyond the buffer's limits.

Recommendations For TP-Link TL-WPA7510 (EU) version V2 190125, as a temporary workaround, consider restricting access to the "/admin/locale" API endpoint until a patch is available. Avoid using the operation parameter in this endpoint to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.