First published: Tue Aug 23 2022(Updated: )
TP-Link Archer A7 Archer A7(US)_V5_210519 is affected by a command injection vulnerability in /usr/bin/tddp. The vulnerability is caused by the program taking part of the received data packet as part of the command. This will cause an attacker to execute arbitrary commands on the router.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Tp-link Archer A7 Firmware | =210519 | |
TP-Link Archer A7 | =v5 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID is CVE-2021-42232.
The severity of the vulnerability is critical with a CVSS score of 9.8.
The TP-Link Archer A7 (US)_V5_210519 firmware version is affected by this vulnerability.
The vulnerability is caused by a command injection vulnerability in /usr/bin/tddp, where the program takes part of the received data packet as part of the command.
An attacker can exploit this vulnerability by executing arbitrary commands on the router.