CVE-2023-37284

Published: Sep 6, 2023

Modified: Sep 26, 2024

PUBLISHED

Description

Improper authentication vulnerability in Archer C20 firmware versions prior to 'Archer C20(JP)_V1_230616' allows a network-adjacent unauthenticated attacker to execute an arbitrary OS command via a crafted request to bypass authentication.

Vendor	Product	Versions
TP-LINK	Archer C20	affected `firmware versions prior to 'Archer C20(JP)_V1_230616'`

References

https://www.tp-link.com/jp/support/download/archer-c20/v1/#Firmware

https://jvn.jp/en/vu/JVNVU99392903/

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2023-37284

Description

Affected Products

References