First published: Wed Sep 20 2023(Updated: )
There is an unauthorized access vulnerability in TP-LINK ER5120G 4.0 2.0.0 Build 210817 Rel.80868n, which allows attackers to obtain sensitive information of the device without authentication, obtain user tokens, and ultimately log in to the device backend management.
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Tp-link Tl-er5120g Firmware | =2.0.0-build_210817 | |
Tp-link Tl-er5120g | =4.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2023-43135 is an unauthorized access vulnerability in TP-LINK ER5120G 4.0 2.0.0 Build 210817 Rel.80868n.
CVE-2023-43135 allows attackers to obtain sensitive information of the device without authentication, obtain user tokens, and ultimately log in to the device backend management.
CVE-2023-43135 has a severity rating of 9.8 (critical).
To fix CVE-2023-43135, update TP-LINK ER5120G to version 2.0.0 Build 210817 Rel.80868p or newer.
More information about CVE-2023-43135 can be found at this link: [CVE-2023-43135](https://github.com/7R4C4R/CVE/blob/main/TPLINK-TL-ER5120G/unauthorized%20access/Unauthorized%20Access%20Vulnerability.md)