CVE-2024-38471

Name of the Vulnerable Software and Affected Versions: TP-LINK products (affected versions not specified) TP-Link Archer AX3000 TP-Link Archer AXE75 TP-Link Archer AX5400 TP-Link Archer Air R5 TP-Link Archer AXE5400

Description: The issue allows a network-adjacent attacker with administrative privileges to execute arbitrary OS commands by restoring a crafted backup file. This can be done because the device does not properly neutralize special elements used in an OS command. The affected devices, with their initial configuration, only allow login from the LAN port or Wi-Fi.

Recommendations: For TP-LINK products, consider restricting access to the backup file restoration feature until a patch is available. For TP-Link Archer AX3000, Archer AXE75, Archer AX5400, Archer Air R5, and Archer AXE5400, restrict administrative access to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.