Back to search
CVE-2017-15627
Published: Jan 11, 2018
Modified: Aug 5, 2024
PUBLISHED
Description
TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the new-pns variable in the pptp_client.lua file.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20180110 Multiple vulnerabilities in TP-Link products(CVE-2017-15613 to CVE-2017-15637)
mailing-list
x_refsource_BUGTRAQ
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now