CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-27210

TP-Link Archer C5v 1.7_181221 devices allows remote attackers to retrieve cleartext credentials via [USER_CFG#0,0,0,0,0,0#0,0,0,0,0,0]0,0 to the /cgi?1&5 URI.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 28.5%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 4.0

References

https://gokay.org/tp-links-archer-c5v-improper-authorization/
https://gokay.org/tp-links-archer-c5v-improper-authorization/

Products affected by CVE-2021-27210

Tp-Link » Archer C5v » Version: 1.0

cpe:2.3:h:tp-link:archer_c5v:1.0
Tp-Link » Archer C5v Firmware » Version: 1.7_181221

cpe:2.3:o:tp-link:archer_c5v_firmware:1.7_181221

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-27210

Products

Pricing

Contact Us