Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
TP-LINK IPC TL-IPC223(P)-6, TL-IPC323K-D, TL-IPC325(KP)-*, and TL-IPC40A-4 devices allow authenticated remote code execution via crafted JSON data because /usr/lib/lua/luci/torchlight/validator.lua does not block various punctuation characters.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
多款TP-LINK产品安全漏洞
Vulnerability Description
TP-LINK IPC TL-IPC223(P)-6等都是中国普联(TP-LINK)公司的不同型号的网络摄像机产品。 多款TP-LINK产品存在存在安全漏洞,该漏洞源于/usr/lib/lua/luci/torchlight/validator.lua文件接收了多个标点符号字符。远程攻击者可利用该漏洞执行任意代码。以下产品受到影响:TP-LINK IPC TL-IPC223(P)-6;TL-IPC323K-D;TL-IPC325(KP)-*;TL-IPC40A-4。
CVSS Information
N/A
Vulnerability Type
N/A