CVE-2023-40531

Summary

Archer AX6000 firmware versions prior to 'Archer AX6000(JP)_V1_1.3.0 Build 20221208' allows a network-adjacent authenticated attacker to execute arbitrary OS commands.

Affected Software

VendorProductVersion RangeStatus
TP-LINKArcher AX6000firmware versions prior to 'Archer AX6000(JP)_V1_1.3.0 Build 20221208'affected

Weaknesses

  • OS command injection

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References