CVE-2023-42664 | TP-Link ER7206 Omada Gigabit VPN Router 1.3.0 Build 20230322 Rel.70591 PPTP Global Configuration os command injection (TALOS-2023-1856)

Posted by Angelo Barbosa | Feb 6, 2024 | CVE

A vulnerability has been found in TP-Link ER7206 Omada Gigabit VPN Router 1.3.0 Build 20230322 Rel.70591 and classified as critical. Affected by this vulnerability is an unknown functionality of the component PPTP Global Configuration. The manipulation leads to os command injection.

This vulnerability is known as CVE-2023-42664. The attack can be launched remotely. There is no exploit available.

CVE-2023-42664 | TP-Link ER7206 Omada Gigabit VPN Router 1.3.0 Build 20230322 Rel.70591 PPTP Global Configuration os command injection (TALOS-2023-1856)

Related Posts

CVE-2024-7648 | Opal Membership Plugin up to 1.2.4 on WordPress information disclosure

CVE-2023-25777 | Intel Thunderbolt DCH Drivers on Windows access control (intel-sa-00851)

CVE-2023-6152 | Grafana/Grafana Enterprise prior 9.5.16/10.0.11/10.1.7/10.2.4/10.3.3 Email authorization (GHSA-3hv4-r2fm-h27f)

CVE-2024-30973 | V-SOL G-EPON ONU HG323AC-B 2.0.08-210 POST Request formFirewall Privilege Escalation