TP-Link Archer C5v 1.7_181221 devices allows remote attackers to retrieve cleartext credentials via [USER_CFG#0,0,0,0,0,0#0,0,0,0,0,0]0,0 to the /cgi?1&5 URI.
References
Link | Resource |
---|---|
https://gokay.org/tp-links-archer-c5v-improper-authorization/ | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2021-02-13T00:04:57
Updated: 2021-02-13T00:04:57
Reserved: 2021-02-13T00:00:00
Link: CVE-2021-27210
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-02-13T01:15:12.797
Modified: 2021-02-19T17:08:21.757
Link: CVE-2021-27210
JSON object: View
Redhat Information
No data.
CWE