Certain TP-Link devices allow Command Injection. This affects NC200 2.1.9 build 200225, NC210 1.0.9 build 200304, NC220 1.3.0 build 200304, NC230 1.3.0 build 200304, NC250 1.3.0 build 200304, NC260 1.5.2 build 200304, and NC450 1.5.3 build 200304.
References
Link | Resource |
---|---|
http://packetstormsecurity.com/files/157531/TP-LINK-Cloud-Cameras-NCXXX-Bonjour-Command-Injection.html | Exploit Third Party Advisory VDB Entry |
http://packetstormsecurity.com/files/159222/TP-Link-Cloud-Cameras-NCXXX-Bonjour-Command-Injection.html | Exploit Third Party Advisory VDB Entry |
https://seclists.org/fulldisclosure/2020/May/2 | Exploit Mailing List Third Party Advisory |
https://www.tp-link.com/us/security | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2020-05-04T15:06:51
Updated: 2020-09-18T18:06:14
Reserved: 2020-04-23T00:00:00
Link: CVE-2020-12109
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-05-04T16:15:12.087
Modified: 2023-01-20T18:24:43.487
Link: CVE-2020-12109
JSON object: View
Redhat Information
No data.
CWE