tdpServer on TP-Link Archer A7 AC1750 devices prior to 201029 allows remote malicious users to execute arbitrary code via the slave_mac parameter. NOTE: this issue exists because of an incomplete fix for CVE-2020-10882 in which shell quotes are mishandled.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
tp-link ac1750_firmware |