CVE-2017-16957: OS Command Injection
First published: Mon Nov 27 2017(Updated: )
TP-Link TL-WVR, TL-WAR, TL-ER, and TL-R devices allow remote authenticated users to execute arbitrary commands via shell metacharacters in the iface field of an admin/diagnostic command to cgi-bin/luci, related to the zone_get_effect_devices function in /usr/lib/lua/luci/controller/admin/diagnostic.lua in uhttpd.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| TP-Link WVR300 Firmware | ||
| TP-Link TL-WVR300 Firmware | ||
| TP-Link WVR302 Firmware | ||
| TP-Link WVR302 | ||
| Tp-link Wvr450l Firmware | ||
| TP-Link WVR450 | ||
| Tp-link Wvr450l Firmware | ||
| TP-Link WVR450L | ||
| TP-Link TL-WVR450G Firmware | ||
| TP-Link TL-WVR450G Firmware | ||
| TP-Link TL-WVR458L Firmware | ||
| TP-Link TL-WVR458L Firmware | ||
| TP-Link TL-WVR458L | ||
| TP-Link TL-WVR458L Firmware | ||
| TP-Link TL-WVR458P Firmware | ||
| TP-Link TL-WVR458P Firmware | ||
| TP-Link WVR900G Firmware | ||
| TP-Link WVR900G | ||
| TP-Link WVR900L Firmware | ||
| TP-Link WVR900L Firmware | ||
| TP-Link TL-WVR1200L | ||
| TP-Link TL-WVR1200L Firmware | ||
| TP-Link WVR1300L Firmware | ||
| TP-Link WVR1300L | ||
| TP-Link TL-WVR1300G | ||
| TP-Link TL-WAR1300G | ||
| TP-Link TL-WVR1750L Firmware | ||
| TP-Link WVR1750L | ||
| Tp-link War2600l Firmware | ||
| TP-Link WVR2600L | ||
| TP-Link WVR4300L Firmware | ||
| TP-Link WVR4300L Firmware | ||
| TP-Link WAR302 | ||
| TP-Link WAR302 | ||
| TP-Link TL-WAR450 | ||
| TP-Link WAR450 | ||
| TP-Link WR450L Firmware | ||
| TP-Link TL-WAR450L Firmware | ||
| TP-Link WAR458L | ||
| TP-Link WAR458 | ||
| TP-Link WAR458L Firmware | ||
| TP-Link WAR458L | ||
| TP-Link WDR900L Firmware | ||
| TP-Link WAR900L | ||
| TP-Link TL-WAR1200L Firmware | ||
| TP-Link TL-WAR1200L Firmware | ||
| TP-Link WAR1300L Firmware | ||
| TP-Link WAR1300L | ||
| TP-Link WAR1750L Firmware | ||
| TP-Link WAR1750L Firmware | ||
| TP-Link Archer WAR2600L | ||
| TP-Link TL-ER3210G | ||
| TP-Link TL-ER3210G Firmware | ||
| TP-Link TL-ER3220G Firmware | ||
| TP-Link TL-ER3220G Firmware | ||
| TP-Link ER5110G Firmware | ||
| TP-Link ER5110G Firmware | ||
| TP-Link TL-ER5120G | ||
| TP-Link TL-ER5120G Firmware | ||
| TP-Link TL-ER5510G Firmware | ||
| TP-Link TL-ER5510G Firmware | ||
| TP-Link TL-ER5520G Firmware | ||
| TP-Link TL-ER5520G Firmware | ||
| TP-Link TL-ER6110G Firmware | ||
| TP-Link TL-ER6110G Firmware | ||
| TP-Link TL-ER6120G | ||
| TP-Link TL-ER6120G Firmware | ||
| TP-Link TL-ER6220G | ||
| TP-Link TL-ER6220G | ||
| TP-Link TL-ER6510G | ||
| Tp-link Tl-er6510g Firmware | ||
| TP-Link TL-ER6520G | ||
| TP-Link TL-ER6520G Firmware | ||
| TP-Link TL-ER7520G Firmware | ||
| TP-Link TL-ER7520G Firmware | ||
| Tp-link R473g Firmware | ||
| TP-LINK R473 | ||
| TP-Link R473G Firmware | ||
| TP-LINK R473 | ||
| TP-Link TL-R473P-AC | ||
| TP-Link R473P-AC | ||
| TP-Link TL-R479GP-AC Firmware | ||
| TP-Link TL-R473GP-AC Firmware | ||
| TP-Link TL-R478 Firmware | ||
| TP-Link TL-R478 Firmware | ||
| TP-Link TL-R478+ Firmware | ||
| TP-Link TL-R478+ | ||
| TP-Link R478+ | ||
| TP-Link TL-R478G Firmware | ||
| Tp-link Tl-r478g+ Firmware | ||
| TP-Link TL-R478G+ | ||
| TP-Link TL-R479P-AC | ||
| TP-Link TL-R479P-AC Firmware | ||
| TP-Link TL-R479GP-AC Firmware | ||
| TP-Link TL-R479GP-AC Firmware | ||
| TP-Link TL-R479GPE-AC Firmware | ||
| TP-Link TL-R483 | ||
| TP-Link TL-R483 Firmware | ||
| Tp-link R483g Firmware | ||
| Tp-link R483g Firmware | ||
| TP-Link TL-R488 | ||
| TP-Link TL-R488 Firmware | ||
| TP-Link TL-R4149G | ||
| TP-Link R4149G | ||
| TP-LINK TL-R4239G | ||
| TP-Link TL-R4239G Firmware | ||
| Tp-link R4299g Firmware | ||
| Tp-link R4299g Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2017-16957?
CVE-2017-16957 is considered a high-severity vulnerability as it allows remote authenticated users to execute arbitrary commands on affected TP-Link devices.
How do I fix CVE-2017-16957?
To fix CVE-2017-16957, ensure that your TP-Link devices are updated with the latest firmware that addresses this vulnerability.
Which devices are affected by CVE-2017-16957?
CVE-2017-16957 affects various TP-Link devices, including the TL-WVR, TL-WAR, TL-ER, and TL-R series models.
How does CVE-2017-16957 exploit work?
CVE-2017-16957 exploits the vulnerability through shell metacharacters in the iface field of an admin diagnostic command via CGI.
What are the potential consequences of CVE-2017-16957?
The potential consequences of CVE-2017-16957 include unauthorized command execution, leading to data breaches and system compromise.
- agent/references
- agent/type
- agent/last-modified-date
- agent/first-publish-date
- agent/weakness
- agent/severity
- agent/author
- agent/description
- agent/event
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/tp-link
- canonical/tp-link wvr300 firmware
- canonical/tp-link tl-wvr300 firmware
- canonical/tp-link wvr302 firmware
- canonical/tp-link wvr302
- canonical/tp-link wvr450l firmware
- canonical/tp-link wvr450
- canonical/tp-link wvr450l
- canonical/tp-link tl-wvr450g firmware
- canonical/tp-link tl-wvr458l firmware
- canonical/tp-link tl-wvr458l
- canonical/tp-link tl-wvr458p firmware
- canonical/tp-link wvr900g firmware
- canonical/tp-link wvr900g
- canonical/tp-link wvr900l firmware
- canonical/tp-link tl-wvr1200l
- canonical/tp-link tl-wvr1200l firmware
- canonical/tp-link wvr1300l firmware
- canonical/tp-link wvr1300l
- canonical/tp-link tl-wvr1300g
- canonical/tp-link tl-war1300g
- canonical/tp-link tl-wvr1750l firmware
- canonical/tp-link wvr1750l
- canonical/tp-link war2600l firmware
- canonical/tp-link wvr2600l
- canonical/tp-link wvr4300l firmware
- canonical/tp-link war302
- canonical/tp-link tl-war450
- canonical/tp-link war450
- canonical/tp-link wr450l firmware
- canonical/tp-link tl-war450l firmware
- canonical/tp-link war458l
- canonical/tp-link war458
- canonical/tp-link war458l firmware
- canonical/tp-link wdr900l firmware
- canonical/tp-link war900l
- canonical/tp-link tl-war1200l firmware
- canonical/tp-link war1300l firmware
- canonical/tp-link war1300l
- canonical/tp-link war1750l firmware
- canonical/tp-link archer war2600l
- canonical/tp-link tl-er3210g
- canonical/tp-link tl-er3210g firmware
- canonical/tp-link tl-er3220g firmware
- canonical/tp-link er5110g firmware
- canonical/tp-link tl-er5120g
- canonical/tp-link tl-er5120g firmware
- canonical/tp-link tl-er5510g firmware
- canonical/tp-link tl-er5520g firmware
- canonical/tp-link tl-er6110g firmware
- canonical/tp-link tl-er6120g
- canonical/tp-link tl-er6120g firmware
- canonical/tp-link tl-er6220g
- canonical/tp-link tl-er6510g
- canonical/tp-link tl-er6510g firmware
- canonical/tp-link tl-er6520g
- canonical/tp-link tl-er6520g firmware
- canonical/tp-link tl-er7520g firmware
- canonical/tp-link r473g firmware
- canonical/tp-link r473
- canonical/tp-link tl-r473p-ac
- canonical/tp-link r473p-ac
- canonical/tp-link tl-r479gp-ac firmware
- canonical/tp-link tl-r473gp-ac firmware
- canonical/tp-link tl-r478 firmware
- canonical/tp-link tl-r478+ firmware
- canonical/tp-link tl-r478+
- canonical/tp-link r478+
- canonical/tp-link tl-r478g firmware
- canonical/tp-link tl-r478g+ firmware
- canonical/tp-link tl-r478g+
- canonical/tp-link tl-r479p-ac
- canonical/tp-link tl-r479p-ac firmware
- canonical/tp-link tl-r479gpe-ac firmware
- canonical/tp-link tl-r483
- canonical/tp-link tl-r483 firmware
- canonical/tp-link r483g firmware
- canonical/tp-link tl-r488
- canonical/tp-link tl-r488 firmware
- canonical/tp-link tl-r4149g
- canonical/tp-link r4149g
- canonical/tp-link tl-r4239g
- canonical/tp-link tl-r4239g firmware
- canonical/tp-link r4299g firmware