CVE-2023-32619

Summary

Archer C50 firmware versions prior to 'Archer C50(JP)_V3_230505' and Archer C55 firmware versions prior to 'Archer C55(JP)_V1_230506' use hard-coded credentials to login to the affected device, which may allow a network-adjacent unauthenticated attacker to execute an arbitrary OS command.

Affected Software

VendorProductVersion RangeStatus
TP-LINKArcher C50firmware versions prior to 'Archer C50(JP)_V3_230505'affected
TP-LINKArcher C55firmware versions prior to 'Archer C55(JP)_V1_230506'affected

Weaknesses

  • Use of Hard-coded Credentials

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References