Published: 06/03/2024 Updated: 12/03/2024

CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8

VMScore: 0

TP-Link JetStream Smart Switch TL-SG2210P 5.0 Build 20211201 allows malicious users to escalate privileges via modification of the 'tid' and 'usrlvl' values in GET requests.

Vulnerable Product	Search on Vulmon	Subscribe to Product
tp-link tl-sg2210p_firmware 5.0

TP-Link JetStream Smart Switch TL-SG2210P version 50 build 20211201 suffers from a privilege escalation vulnerability ...

JetStream Smart Switch - TL-SG2210P v5.0/ Improper Access Control / CVE-2023-43318

CVE-2023-43318 JetStream Smart Switch - TL-SG2210P v50/ Improper Access Control / CVE-2023-43318 [+] Credits: Shahnawaz Shaikh, Security Researcher at Cybergate Defense LLC [+] Twitter Vendor: Tp-Link (tp-linkcom) Product: JetStream Smart Switch - TL-SG2210P Vulnerability Type: Incorrect Access Control (DOS) Affected Product Code Base: JetStream Smart Switch - TL-SG221

NVD-CWE-Other https://github.com/str2ver/CVE-2023-43318/tree/main https://seclists.org/fulldisclosure/2024/Mar/9 https://nvd.nist.gov https://github.com/str2ver/CVE-2023-43318 https://packetstormsecurity.com/files/177411/TP-Link-JetStream-Smart-Switch-TL-SG2210P-5.0-Build-20211201-Privilege-Escalation.html

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2023-43318

Vulnerability Summary

Exploits

Github Repositories

References

Vulmon Search

About

Products

Connect