Remote Command Execution in TP-Link Networking Devices
CVE-2017-16957

8.8HIGH

Key Information:

Vendor: Tp-link
Status: Tl-wvr300 Firmware
Vendor: CVE Published:; 27 November 2017

Summary

Certain TP-Link networking devices, including models TL-WVR, TL-WAR, TL-ER, and TL-R, expose a security vulnerability that allows remote authenticated users to execute arbitrary commands. This can be exploited through specially crafted input containing shell metacharacters in the iface field of an admin or diagnostic command. The vulnerability lies in the zone_get_effect_devices function, potentially leading to unauthorized access and control over the affected devices through the web interface.

References

http://www.securityfocus.com/bid/101968

vdb-entryx_refsource_BID

https://github.com/coincoin7/Wireless-Router-Vulnerabilit...

x_refsource_MISC

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 27, 2017
Vulnerability Reserved
Nov 27, 2017