Remote Authentication Bypass in TP-Link Archer C5v Devices
CVE-2021-27210

6.5MEDIUM

Key Information:

Vendor: Tp-link
Status: Archer C5v Firmware
Vendor: CVE Published:; 13 February 2021

What is CVE-2021-27210?

The TP-Link Archer C5v 1.7_181221 devices are susceptible to an improper authorization vulnerability, allowing remote attackers to access sensitive information. By exploiting this flaw, attackers can retrieve cleartext user credentials through a specifically crafted URI, enabling potential unauthorized access and compromise of the device's settings. This highlights the importance of securing these devices against unauthorized access to protect user data.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://gokay.org/tp-links-archer-c5v-improper-authorizat...

x_refsource_MISC

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Feb 13, 2021
Vulnerability Reserved
Feb 13, 2021

JSON

Tp-link

What is CVE-2021-27210?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

References

CVSS V3.1

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.