What is the vulnerability identified as CVE-2023-2646?

CVE-2023-2646 is a vulnerability found in the TP-Link Archer C7v2 router that allows an attacker to perform a denial of service attack by manipulating the GET request parameters.

How severe is the CVE-2023-2646 vulnerability?

The severity of the CVE-2023-2646 vulnerability is rated as medium with a severity value of 6.5.

Which software versions are affected by the CVE-2023-2646 vulnerability?

The TP-Link Archer C7v2 firmware version 180114 is affected by the CVE-2023-2646 vulnerability.

How can the CVE-2023-2646 vulnerability be exploited?

An attacker can exploit the CVE-2023-2646 vulnerability by performing a denial of service attack using manipulated GET request parameters within the local network.

Is the TP-Link Archer C7 router version 2.0 affected by the CVE-2023-2646 vulnerability?

No, the TP-Link Archer C7 router version 2.0 is not affected by the CVE-2023-2646 vulnerability.

Vulnerability/
CVE-2023-2646

medium

6.5

CWE

404

11/5/2023

2/8/2024

CVE-2023-2646: TP-Link Archer C7v2 GET Request Parameter denial of service

First published: Thu May 11 2023(Updated: )

A vulnerability has been found in TP-Link Archer C7v2 v2_en_us_180114 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component GET Request Parameter Handler. The manipulation leads to denial of service. The attack can only be done within the local network. The associated identifier of this vulnerability is VDB-228775. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

Credit: cna@vuldb.com cna@vuldb.com

Affected Software	Affected Version	How to fix
Tp-link Archer C7 Firmware	=180114
TP-Link Archer C7	=2.0
All of
	=180114
	=2.0

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the vulnerability identified as CVE-2023-2646?
CVE-2023-2646 is a vulnerability found in the TP-Link Archer C7v2 router that allows an attacker to perform a denial of service attack by manipulating the GET request parameters.
How severe is the CVE-2023-2646 vulnerability?
The severity of the CVE-2023-2646 vulnerability is rated as medium with a severity value of 6.5.
Which software versions are affected by the CVE-2023-2646 vulnerability?
The TP-Link Archer C7v2 firmware version 180114 is affected by the CVE-2023-2646 vulnerability.
How can the CVE-2023-2646 vulnerability be exploited?
An attacker can exploit the CVE-2023-2646 vulnerability by performing a denial of service attack using manipulated GET request parameters within the local network.
Is the TP-Link Archer C7 router version 2.0 affected by the CVE-2023-2646 vulnerability?
No, the TP-Link Archer C7 router version 2.0 is not affected by the CVE-2023-2646 vulnerability.

collector/nvd-index
agent/references
agent/type
agent/first-publish-date
agent/author
agent/weakness
agent/severity
agent/title
agent/description
agent/softwarecombine
agent/tags
agent/event
collector/nvd-api
source/NVD
agent/software-canonical-lookup
agent/last-modified-date
collector/mitre-cve
source/MITRE
vendor/tp-link
canonical/tp-link archer c7 firmware
version/tp-link archer c7 firmware/180114
canonical/tp-link archer c7
version/tp-link archer c7/2.0

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.