CVE-2024-5035
8.8
CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:N/SA:H
Summary
The affected device expose a network service called "rftest" that is vulnerable to unauthenticated command injection on ports TCP/8888, TCP/8889, and TCP/8890. By successfully exploiting this flaw, remote unauthenticated attacker can gain arbitrary command execution on the device with elevated privileges.This issue affects Archer C4500X: through 1_1.1.6.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| TP-Link | Archer C4500X | 0 <= 1_1.1.6 | affected |
Weaknesses
- CWE-77: CWE-77 Improper Neutralization of Special Elements used in a Command ('Command Injection')
Workarounds
Limit exposure of ports TCP/8888, TCP/8889, and TCP/9000 works as an interim fix.
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: total
CVE Program Container
Additional References
- https://onekey.com/blog/security-advisory-remote-command-execution-on-tp-link-archer-c5400x/
- https://www.tp-link.com/en/support/download/archer-c5400x/#Firmware
References
- https://onekey.com/blog/security-advisory-remote-command-execution-on-tp-link-archer-c5400x/
- https://www.tp-link.com/en/support/download/archer-c5400x/#Firmware
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.