CVE-2017-16958: OS Command Injection
First published: Mon Nov 27 2017(Updated: )
TP-Link TL-WVR, TL-WAR, TL-ER, and TL-R devices allow remote authenticated users to execute arbitrary commands via shell metacharacters in the t_bindif field of an admin/bridge command to cgi-bin/luci, related to the get_device_byif function in /usr/lib/lua/luci/controller/admin/bridge.lua in uhttpd.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Tp-link Tl-wvr300 Firmware | ||
| Tp-link Tl-wvr300 | ||
| Tp-link Tl-wvr302 Firmware | ||
| Tp-link Tl-wvr302 | ||
| Tp-link Tl-wvr450 Firmware | ||
| Tp-link Tl-wvr450 | ||
| Tp-link Tl-wvr450l Firmware | ||
| Tp-link Tl-wvr450l | ||
| Tp-link Tl-wvr450g Firmware | ||
| Tp-link Tl-wvr450g | ||
| Tp-link Tl-wvr458 Firmware | ||
| Tp-link Tl-wvr458 | ||
| Tp-link Tl-wvr458l Firmware | ||
| Tp-link Tl-wvr458l | ||
| Tp-link Tl-wvr458p Firmware | ||
| Tp-link Tl-wvr458p | ||
| Tp-link Tl-wvr900g Firmware | ||
| Tp-link Tl-wvr900g | ||
| Tp-link Tl-wvr900l Firmware | ||
| Tp-link Tl-wvr900l | ||
| Tp-link Tl-wvr1200l Firmware | ||
| Tp-link Tl-wvr1200l | ||
| Tp-link Tl-wvr1300l Firmware | ||
| Tp-link Tl-wvr1300l | ||
| Tp-link Tl-wvr1300g Firmware | ||
| Tp-link Tl-war1300g | ||
| Tp-link Tl-wvr1750l Firmware | ||
| Tp-link Tl-wvr1750l | ||
| Tp-link Tl-war2600l Firmware | ||
| Tp-link Tl-wvr2600l | ||
| Tp-link Tl-wvr4300l Firmware | ||
| Tp-link Tl-wvr4300l | ||
| Tp-link Tl-war302 Firmware | ||
| Tp-link Tl-war302 | ||
| Tp-link Tl-war450 Firmware | ||
| Tp-link Tl-war450 | ||
| Tp-link Tl-war450l Firmware | ||
| Tp-link Tl-war450l | ||
| Tp-link Tl-war458 Firmware | ||
| Tp-link Tl-war458 | ||
| Tp-link Tl-war458l Firmware | ||
| Tp-link Tl-war458l | ||
| Tp-link Tl-war900l Firmware | ||
| Tp-link Tl-war900l | ||
| Tp-link Tl-war1200l Firmware | ||
| Tp-link Tl-war1200l | ||
| Tp-link Tl-war1300l Firmware | ||
| Tp-link Tl-war1300l | ||
| Tp-link Tl-war1750l Firmware | ||
| Tp-link Tl-war1750l | ||
| Tp-link Tl-war2600l | ||
| Tp-link Tl-er3210g Firmware | ||
| Tp-link Tl-er3210g | ||
| Tp-link Tl-er3220g Firmware | ||
| Tp-link Tl-er3220g | ||
| Tp-link Tl-er5110g Firmware | ||
| Tp-link Tl-er5110g | ||
| Tp-link Tl-er5120g Firmware | ||
| Tp-link Tl-er5120g | ||
| Tp-link Tl-er5510g Firmware | ||
| Tp-link Tl-er5510g | ||
| Tp-link Tl-er5520g Firmware | ||
| Tp-link Tl-er5520g | ||
| Tp-link Tl-er6110g Firmware | ||
| Tp-link Tl-er6110g | ||
| Tp-link Tl-er6120g Firmware | ||
| Tp-link Tl-er6120g | ||
| Tp-link Tl-er6220g Firmware | ||
| Tp-link Tl-er6220g | ||
| Tp-link Tl-er6510g Firmware | ||
| Tp-link Tl-er6510g | ||
| Tp-link Tl-er6520g Firmware | ||
| Tp-link Tl-er6520g | ||
| Tp-link Tl-er7520g Firmware | ||
| Tp-link Tl-er7520g | ||
| Tp-link Tl-r473 Firmware | ||
| Tp-link Tl-r473 | ||
| Tp-link Tl-r473g Firmware | ||
| TP-LINK TL-R473G | ||
| Tp-link Tl-r473p-ac Firmware | ||
| Tp-link Tl-r473p-ac | ||
| Tp-link Tl-r479gp-ac Firmware | ||
| Tp-link Tl-r473gp-ac | ||
| Tp-link Tl-r478 Firmware | ||
| Tp-link Tl-r478 | ||
| Tp-link Tl-r478\+ Firmware | ||
| Tp-link Tl-r478\+ | ||
| Tp-link Tl-r478g Firmware | ||
| Tp-link Tl-r478g | ||
| Tp-link Tl-r478g\+ Firmware | ||
| Tp-link Tl-r478g\+ | ||
| Tp-link Tl-r479p-ac Firmware | ||
| Tp-link Tl-r479p-ac | ||
| Tp-link Tl-r479gp-ac | ||
| Tp-link Tl-r479gpe-ac Firmware | ||
| Tp-link Tl-r479gpe-ac | ||
| Tp-link Tl-r483 Firmware | ||
| Tp-link Tl-r483 | ||
| Tp-link Tl-r483g Firmware | ||
| Tp-link Tl-r483g | ||
| Tp-link Tl-r488 Firmware | ||
| Tp-link Tl-r488 | ||
| Tp-link Tl-r4149g Firmware | ||
| Tp-link Tl-r4149g | ||
| Tp-link Tl-r4239g Firmware | ||
| Tp-link Tl-r4239g | ||
| Tp-link Tl-r4299g Firmware | ||
| Tp-link Tl-r4299g |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- vendor/tp-link
- canonical/tp-link tl-wvr300 firmware
- canonical/tp-link tl-wvr300
- canonical/tp-link tl-wvr302 firmware
- canonical/tp-link tl-wvr302
- canonical/tp-link tl-wvr450 firmware
- canonical/tp-link tl-wvr450
- canonical/tp-link tl-wvr450l firmware
- canonical/tp-link tl-wvr450l
- canonical/tp-link tl-wvr450g firmware
- canonical/tp-link tl-wvr450g
- canonical/tp-link tl-wvr458 firmware
- canonical/tp-link tl-wvr458
- canonical/tp-link tl-wvr458l firmware
- canonical/tp-link tl-wvr458l
- canonical/tp-link tl-wvr458p firmware
- canonical/tp-link tl-wvr458p
- canonical/tp-link tl-wvr900g firmware
- canonical/tp-link tl-wvr900g
- canonical/tp-link tl-wvr900l firmware
- canonical/tp-link tl-wvr900l
- canonical/tp-link tl-wvr1200l firmware
- canonical/tp-link tl-wvr1200l
- canonical/tp-link tl-wvr1300l firmware
- canonical/tp-link tl-wvr1300l
- canonical/tp-link tl-wvr1300g firmware
- canonical/tp-link tl-war1300g
- canonical/tp-link tl-wvr1750l firmware
- canonical/tp-link tl-wvr1750l
- canonical/tp-link tl-war2600l firmware
- canonical/tp-link tl-wvr2600l
- canonical/tp-link tl-wvr4300l firmware
- canonical/tp-link tl-wvr4300l
- canonical/tp-link tl-war302 firmware
- canonical/tp-link tl-war302
- canonical/tp-link tl-war450 firmware
- canonical/tp-link tl-war450
- canonical/tp-link tl-war450l firmware
- canonical/tp-link tl-war450l
- canonical/tp-link tl-war458 firmware
- canonical/tp-link tl-war458
- canonical/tp-link tl-war458l firmware
- canonical/tp-link tl-war458l
- canonical/tp-link tl-war900l firmware
- canonical/tp-link tl-war900l
- canonical/tp-link tl-war1200l firmware
- canonical/tp-link tl-war1200l
- canonical/tp-link tl-war1300l firmware
- canonical/tp-link tl-war1300l
- canonical/tp-link tl-war1750l firmware
- canonical/tp-link tl-war1750l
- canonical/tp-link tl-war2600l
- canonical/tp-link tl-er3210g firmware
- canonical/tp-link tl-er3210g
- canonical/tp-link tl-er3220g firmware
- canonical/tp-link tl-er3220g
- canonical/tp-link tl-er5110g firmware
- canonical/tp-link tl-er5110g
- canonical/tp-link tl-er5120g firmware
- canonical/tp-link tl-er5120g
- canonical/tp-link tl-er5510g firmware
- canonical/tp-link tl-er5510g
- canonical/tp-link tl-er5520g firmware
- canonical/tp-link tl-er5520g
- canonical/tp-link tl-er6110g firmware
- canonical/tp-link tl-er6110g
- canonical/tp-link tl-er6120g firmware
- canonical/tp-link tl-er6120g
- canonical/tp-link tl-er6220g firmware
- canonical/tp-link tl-er6220g
- canonical/tp-link tl-er6510g firmware
- canonical/tp-link tl-er6510g
- canonical/tp-link tl-er6520g firmware
- canonical/tp-link tl-er6520g
- canonical/tp-link tl-er7520g firmware
- canonical/tp-link tl-er7520g
- canonical/tp-link tl-r473 firmware
- canonical/tp-link tl-r473
- canonical/tp-link tl-r473g firmware
- canonical/tp-link tl-r473g
- canonical/tp-link tl-r473p-ac firmware
- canonical/tp-link tl-r473p-ac
- canonical/tp-link tl-r479gp-ac firmware
- canonical/tp-link tl-r473gp-ac
- canonical/tp-link tl-r478 firmware
- canonical/tp-link tl-r478
- canonical/tp-link tl-r478\+ firmware
- canonical/tp-link tl-r478\+
- canonical/tp-link tl-r478g firmware
- canonical/tp-link tl-r478g
- canonical/tp-link tl-r478g\+ firmware
- canonical/tp-link tl-r478g\+
- canonical/tp-link tl-r479p-ac firmware
- canonical/tp-link tl-r479p-ac
- canonical/tp-link tl-r479gp-ac
- canonical/tp-link tl-r479gpe-ac firmware
- canonical/tp-link tl-r479gpe-ac
- canonical/tp-link tl-r483 firmware
- canonical/tp-link tl-r483
- canonical/tp-link tl-r483g firmware
- canonical/tp-link tl-r483g
- canonical/tp-link tl-r488 firmware
- canonical/tp-link tl-r488
- canonical/tp-link tl-r4149g firmware
- canonical/tp-link tl-r4149g
- canonical/tp-link tl-r4239g firmware
- canonical/tp-link tl-r4239g
- canonical/tp-link tl-r4299g firmware
- canonical/tp-link tl-r4299g