Security Flaw in TP-Link TL-SG108E Admin Network Communications
CVE-2017-8076

9.8CRITICAL

Key Information:

Vendor: Tp-link
Status: Tl-sg108e Firmware
Vendor: CVE Published:; 23 April 2017

Summary

The TP-Link TL-SG108E network switch has a vulnerability where admin communications are encoded using RC4, an encryption method that is no longer considered secure. This issue affects the firmware version 1.1.2 Build 20141017 Rel.50749, compromising the integrity of network communications and potentially exposing sensitive information to interception.

References

https://chmod750.com/2017/04/23/vulnerability-disclosure-...

x_refsource_MISC

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Apr 23, 2017