Vulnerability in TP-Link Routers Allow Remote Code Execution

CVE-2024-53375

Currently unrated 🤨

Key Information

Vendor: TP-Link
Vendor: CVE Published:; 2 December 2024

Badges

👾 Exploit Exists📰 News Worthy

Summary

The vulnerability CVE-2024-53375 affects TP-Link routers, allowing attackers to execute remote code and inject malicious commands, leading to potential exploitation of the devices. The vulnerability affects the HomeShield functionality and can be exploited without the installation or activation of the HomeShield functionality. The flaw resides in the firmware of the routers, allowing attackers to execute arbitrary commands with root privileges, gaining full control over the device. It is important for TP-Link users to update their router firmware as soon as TP-Link releases a patch to mitigate the risk of exploitation.

News Articles

GBHackers News

CVE-2024-53375

TP-Link HomeShield Function Vulnerability Let Attackers Inject Malicious Commands

A significant vulnerability has been identified in TP-Link's HomeShield function, affecting a range of their devices, including the Archer, Deco, and Tapo series routers.

3 weeks ago

Refferences

https://github.com/ThottySploity/CVE-2024-53375

https://thottysploity.github.io/posts/cve-2024-53375/

Timeline

👾
Exploit known to exist
Dec 3, 2024
First article discovered by GBHackers News
Dec 3, 2024
Vulnerability published
Dec 2, 2024
Vulnerability Reserved
Nov 20, 2024

Collectors

NVD DatabaseMitre Database1 News Article(s)