Vulnerability Details CVE-2023-27078
A command injection issue was found in TP-Link MR3020 v.1_150921 that allows a remote attacker to execute arbitrary commands via a crafted request to the tftp endpoint.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.016
EPSS Ranking 81.0%
CVSS Severity
CVSS v3 Score 9.8
Products affected by CVE-2023-27078
-
cpe:2.3:h:tp-link:tl-mr3020:-
-
cpe:2.3:o:tp-link:tl-mr3020_firmware:1.0