CVE-2023-32619
CVSS 3.1 Score 8.8 of 10 (high)
Details
Summary
CVE-2023-32619 is a vulnerability affecting Archer C50 and C55 firmware versions. Prior to 'Archer C50(JP)_V3_230505' for C50 and 'Archer C55(JP)_V1_230506' for C55, these devices use hard-coded credentials for login. An unauthenticated attacker within the network can exploit this vulnerability to execute arbitrary OS commands on the affected device. This poses a significant security risk as the hard-coded credentials can be easily discovered, allowing attackers to gain unauthorized access and potentially cause damage or steal sensitive information. It is highly recommended that users update their firmware to the latest versions to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Vendors
- TP-LINK Technologies Co Ltd