Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
This vulnerability allows network-adjacent attackers execute arbitrary code on affected installations of TP-Link Archer A7 Firmware Ver: 190726 AC1750 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the tdpServer service, which listens on UDP port 20002 by default. This issue results from the use of hard-coded encryption key. An attacker can leverage this in conjunction with other vulnerabilities to execute code in the context of root. Was ZDI-CAN-9652.
CVSS Information
N/A
Vulnerability Type
使用硬编码的密码学密钥
Vulnerability Title
TP-Link Archer A7 AC1750 信任管理问题漏洞
Vulnerability Description
TP-Link Archer A7 AC1750是中国普联(TP-Link)公司的一款无线路由器。 使用190726 AC1750版本固件的TP-Link Archer A7中的tdpServer服务存在安全漏洞,该漏洞源于程序使用了硬编码加密密钥。攻击者可利用该漏洞执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A