CVE-2023-36498 | TP-LINK ER7206 Omada Gigabit VPN Router 1.3.0 Build 20230322 Rel.70591 PPTP Client os command injection (TALOS-2023-1853)

Inserito da Angelo Barbosa | Feb 6, 2024 | CVE

A vulnerability, which was classified as critical, was found in TP-LINK ER7206 Omada Gigabit VPN Router 1.3.0 Build 20230322 Rel.70591. Affected is an unknown function of the component PPTP Client. The manipulation leads to os command injection.

This vulnerability is traded as CVE-2023-36498. It is possible to launch the attack remotely. There is no exploit available.

CVE-2023-36498 | TP-LINK ER7206 Omada Gigabit VPN Router 1.3.0 Build 20230322 Rel.70591 PPTP Client os command injection (TALOS-2023-1853)

Post correlati

CVE-2024-1693 | SP Project & Document Manager Plugin up to 4.70 on WordPress Folder Name access control

CVE-2021-34970 | Foxit PDF Reader 11.0.1.49938 print format string (ZDI-21-1201)

CVE-2024-2566 | Fujian Kelixin Communication Command and Dispatch Platform up to 20240313 get_extension_yl.php imei sql injection

CVE-2024-34750 | Apache Tomcat up to 9.0.89/10.1.24/11.0.0-M20 HTTP/2 Stream exceptional condition