CVE-2018-12577: OS Command Injection
First published: Mon Jul 02 2018(Updated: )
The Ping and Traceroute features on TP-Link TL-WR841N v13 00000001 0.9.1 4.16 v0001.0 Build 180119 Rel.65243n devices allow authenticated blind Command Injection.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Tp-link Tl-wr841n Firmware | =0.9.1_4.16 | |
| TP-LINK TL-WR841N | =13.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2018-12577?
CVE-2018-12577 is a vulnerability that allows authenticated blind Command Injection on TP-Link TL-WR841N v13 routers.
What is the severity of CVE-2018-12577?
The severity of CVE-2018-12577 is high, with a CVSS base score of 8.8.
How can I check if my TP-Link TL-WR841N v13 router is affected?
You can check if your TP-Link TL-WR841N v13 router is affected by CVE-2018-12577 by verifying the firmware version matches '0.9.1_4.16'.
How do I fix CVE-2018-12577?
To fix CVE-2018-12577, TP-Link TL-WR841N v13 router users should update to firmware version 0.9.1_4.16 or newer.
Where can I find more information about CVE-2018-12577?
You can find more information about CVE-2018-12577 at the following URL: https://software-talk.org/blog/2018/06/tplink-wr841n-code-exec-cve-2018-12577/
- collector/nvd-index
- agent/weakness
- agent/references
- agent/severity
- agent/author
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/tp-link
- canonical/tp-link tl-wr841n firmware
- version/tp-link tl-wr841n firmware/0.9.1_4.16
- canonical/tp-link tl-wr841n
- version/tp-link tl-wr841n/13.0