HIGH🇬🇧 English

CVE-2018-12692

CVSS 8.8v3.0pub. 2018-06-23upd. 2024-11-21

TP-Link TL-WA850RE Wi-Fi Range Extender with hardware version 5 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the wps_setup_pin parameter to /data/wps.setup.json.

oryginał EN
CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
  • Tp Link Tl Wa850re

    HW
    Tp-Link
    5
  • Tp Link Tl Wa850re Firmware

    OS
    Tp-Link
    wszystkie wersje
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
Command Injection
CWE
Referencje

Powiązane podatności

CVE-2022-22922CRITICAL9.8ten sam produkt

TP-Link TL-WA850RE Wi-Fi Range Extender before v6_200923 was discovered to use highly predictable and easily d...

CVE-2025-14737HIGH7.1ten sam produkt

Command Injection vulnerability in TP-Link WA850RE (httpd modules) allows authenticated adjacent attacker to i...

CVE-2018-12694HIGH7.5ten sam produkt

TP-Link TL-WA850RE Wi-Fi Range Extender with hardware version 5 allows remote attackers to cause a denial of s...

CVE-2025-14738MEDIUM5.7ten sam produkt

Improper authentication vulnerability in TP-Link WA850RE (httpd modules) allows unauthenticated attackers to d...

CVE-2018-12693MEDIUM6.5ten sam produkt

Stack-based buffer overflow in TP-Link TL-WA850RE Wi-Fi Range Extender with hardware version 5 allows remote a...