Vulnerability Details CVE-2021-31658
TP-Link TL-SG2005, TL-SG2008, etc. 1.0.0 Build 20180529 Rel.40524 is affected by an Array index error. The interface that provides the "device description" function only judges the length of the received data, and does not filter special characters. This vulnerability will cause the application to crash, and all device configuration information will be erased.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 59.9%
CVSS Severity
CVSS v3 Score 8.1
CVSS v2 Score 5.8
References
Products affected by CVE-2021-31658
-
cpe:2.3:h:tp-link:tl-sg2005:-
-
cpe:2.3:h:tp-link:tl-sg2008:-
-
cpe:2.3:o:tp-link:tl-sg2005_firmware:1.0.0
-
cpe:2.3:o:tp-link:tl-sg2008_firmware:1.0.0