CVE-2018-19537

7.2HIGH

Key Information:

Vendor: Tp-link
Status: Archer C5 Firmware
Vendor: CVE Published:; 26 November 2018

Badges

👾 Exploit Exists🟡 Public PoC

Summary

TP-Link Archer C5 devices through V2_160201_US allow remote command execution via shell metacharacters on the wan_dyn_hostname line of a configuration file that is encrypted with the 478DA50BF9E3D2CF key and uploaded through the web GUI by using the web admin account. The default password of admin may be used in some cases.

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

TP-Link-ArcherC5-RCE
Created by JackDoan

References

https://github.com/JackDoan/TP-Link-ArcherC5-RCE

x_refsource_MISC

CVSS V3.1

Score:

7.2

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 26, 2018
🟡
Public PoC available
Nov 25, 2018
👾
Exploit known to exist
Nov 25, 2018
Vulnerability Reserved
Nov 25, 2018