TP-Link M7350 devices through 1.0.16 Build 181220 Rel.1116n allow serviceName OS Command Injection (issue 4 of 5).
References
Link | Resource |
---|---|
https://pastebin.com/yAxBFe05 | Exploit Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2019-10-24 08:15
Updated : 2019-10-28 08:28
NVD link : CVE-2019-13652
Mitre link : CVE-2019-13652
JSON object : View
CWE
CWE-78
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Products Affected
tp-link
- m7350_firmware
- m7350