CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-21773

Multiple TP-LINK products allow a network-adjacent unauthenticated attacker with access to the product from the LAN port or Wi-Fi to execute arbitrary OS commands on the product that has pre-specified target devices and blocked URLs in parental control settings.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 40.0%

CVSS Severity

CVSS v3 Score 8.8

References

Products affected by CVE-2024-21773

Tp-Link » Archer Ax3000 » Version: 1.0

cpe:2.3:h:tp-link:archer_ax3000:1.0
Tp-Link » Archer Ax5400 » Version: 1.0

cpe:2.3:h:tp-link:archer_ax5400:1.0
Tp-Link » Deco X50 » Version: 1.0

cpe:2.3:h:tp-link:deco_x50:1.0
Tp-Link » Deco Xe200 » Version: 1.0

cpe:2.3:h:tp-link:deco_xe200:1.0
Tp-Link » Archer Ax3000 Firmware » Version: 1.0.0

cpe:2.3:o:tp-link:archer_ax3000_firmware:1.0.0
Tp-Link » Archer Ax3000 Firmware » Version: 1.1.1

cpe:2.3:o:tp-link:archer_ax3000_firmware:1.1.1
Tp-Link » Archer Ax5400 Firmware » Version: 1.0.1

cpe:2.3:o:tp-link:archer_ax5400_firmware:1.0.1
Tp-Link » Archer Ax5400 Firmware » Version: 1.1.1

cpe:2.3:o:tp-link:archer_ax5400_firmware:1.1.1
Tp-Link » Deco X50 Firmware » Version: 1.3.0

cpe:2.3:o:tp-link:deco_x50_firmware:1.3.0
Tp-Link » Deco X50 Firmware » Version: 1.3.1

cpe:2.3:o:tp-link:deco_x50_firmware:1.3.1
Tp-Link » Deco Xe200 Firmware » Version: 1.2.3

cpe:2.3:o:tp-link:deco_xe200_firmware:1.2.3
Tp-Link » Deco Xe200 Firmware » Version: 1.2.4

cpe:2.3:o:tp-link:deco_xe200_firmware:1.2.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-21773

Products

Pricing

Contact Us