Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tp-link tp-link - vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-40357
Multiple TP-LINK products allow a network-adjacent authenticated malicious user to execute arbitrary OS commands. Affected products/versions are as follows: Archer AX50 firmware versions prior to 'Archer AX50(JP)_V1_230529', Archer A10 firmware versions prior to 'A...
Tp-link Archer Ax50 Firmware
Tp-link Archer A10 Firmware
Tp-link Archer Ax10 Firmware
Tp-link Archer Ax11000 Firmware
NA
CVE-2024-21773
Multiple TP-LINK products allow a network-adjacent unauthenticated attacker with access to the product to execute arbitrary OS commands. Affected products/versions are as follows: Archer AX3000 firmware versions prior to "Archer AX3000(JP)_V1_1.1.2 Build 20231115", Arch...
Tp-link Archer Ax3000 Firmware
Tp-link Archer Ax5400 Firmware
Tp-link Deco X50 Firmware
Tp-link Deco Xe200 Firmware
NA
CVE-2023-49515
Insecure Permissiosn vulnerability in TP Link TC70 and C200 WIFI Camera v.3 firmware v.1.3.4 and fixed in v.1.3.11 allows a physically proximate malicious user to obtain sensitive information via a connection to the UART pin components.
Tp-link Tapo C200 Firmware 1.1.22
Tp-link Tapo C200 Firmware 1.3.4
Tp-link Tapo C200 Firmware 1.3.9
Tp-link Tapo Tc70 Firmware 1.1.22
Tp-link Tapo Tc70 Firmware 1.3.4
Tp-link Tapo Tc70 Firmware 1.3.9
383
VMScore
CVE-2021-3125
In TP-Link TL-XDR3230 < 1.0.12, TL-XDR1850 < 1.0.9, TL-XDR1860 < 1.0.14, TL-XDR3250 < 1.0.2, TL-XDR6060 Turbo < 1.1.8, TL-XDR5430 < 1.0.11, and possibly others, when IPv6 is used, a routing loop can occur that generates excessive network traffic between an affec...
Tp-link Tl-xdr3230 Firmware
Tp-link Tl-xdr5430 Firmware
Tp-link Tl-xdr3250 Firmware
Tp-link Tl-xdr1860 Firmware
Tp-link Tl-xdr1850 Firmware
Tp-link Tl-xdr6060 Firmware
1000
VMScore
CVE-2013-2578
cgi-bin/admin/servetest in TP-Link IP Cameras TL-SC3130, TL-SC3130G, TL-SC3171, TL-SC3171G, and possibly other models before beta firmware LM.1.6.18P12_sign6 allows remote malicious users to execute arbitrary commands via shell metacharacters in (1) the ServerName parameter and (...
Tp-link Tl-sc3171 -
Tp-link Tl-sc3171g -
Tp-link Tl-sc3130 -
Tp-link Tl-sc3130g -
Tp-link Lm Firmware
1 EDB exploit
1000
VMScore
CVE-2013-2579
TP-Link IP Cameras TL-SC3130, TL-SC3130G, TL-SC3171, TL-SC3171G, and possibly other models before beta firmware LM.1.6.18P12_sign6 have an empty password for the hardcoded "qmik" account, which allows remote malicious users to obtain administrative access via a TELNET s...
Tp-link Tl-sc3130g -
Tp-link Tl-sc3171 -
Tp-link Tl-sc3171g -
Tp-link Tl-sc3130 -
Tp-link Lm Firmware
1 EDB exploit
715
VMScore
CVE-2013-2580
Unrestricted file upload vulnerability in cgi-bin/uploadfile in TP-Link IP Cameras TL-SC3130, TL-SC3130G, TL-SC3171, TL-SC3171G, and possibly other models before beta firmware LM.1.6.18P12_sign6, allows remote malicious users to upload arbitrary files, then accessing it via a dir...
Tp-link Tl-sc3171g -
Tp-link Tl-sc3130 -
Tp-link Tl-sc3130g -
Tp-link Tl-sc3171 -
Tp-link Lm Firmware
1 EDB exploit
785
VMScore
CVE-2013-2581
cgi-bin/firmwareupgrade in TP-Link IP Cameras TL-SC3130, TL-SC3130G, TL-SC3171, TL-SC3171G, and possibly other models before beta firmware LM.1.6.18P12_sign6 allows remote malicious users to modify the firmware revision via a "preset" action.
Tp-link Tl-sc3130g -
Tp-link Tl-sc3171 -
Tp-link Tl-sc3171g -
Tp-link Tl-sc3130 -
Tp-link Lm Firmware
1 EDB exploit
632
VMScore
CVE-2013-3688
The TP-Link IP Cameras TL-SC3171, TL-SC3130, TL-SC3130G, TL-SC3171G, and possibly other models before beta firmware LM.1.6.18P12_sign6, does not properly restrict access to certain administrative functions, which allows remote malicious users to (1) cause a denial of service (dev...
Tp-link Tl-sc3130g -
Tp-link Tl-sc3171g -
Tp-link Tl-sc3130 -
Tp-link Tl-sc3171 -
Tp-link Lm Firmware
578
VMScore
CVE-2019-6487
TP-Link WDR Series devices through firmware v3 (such as TL-WDR5620 V3.0) are affected by command injection (after login) leading to remote code execution, because shell metacharacters can be included in the weather get_weather_observe citycode field.
Tp-link Tl-wdr5620 Firmware
Tp-link Tl-wdr3500 Firmware
Tp-link Tl-wdr3600 Firmware
Tp-link Tl-wdr4300 Firmware
Tp-link Tl-wdr4900 Firmware
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »