N/A

OS command injection vulnerability exists in Deco BE65 Pro firmware versions prior to "Deco BE65 Pro(JP)_V1_1.1.2 Build 20250123". If this vulnerability is exploited, an arbitrary OS command may be executed by the user who can log in to the device.

N/A

OS命令中使用的特殊元素转义处理不恰当(OS命令注入)

TP-LINK Deco BE65 Pro 操作系统命令注入漏洞

TP-LINK Deco BE65 Pro是中国普联（TP-LINK）公司的一款 Wi-Fi 7 Mesh 路由器。 TP-LINK Deco BE65 Pro 1.1.2 Build 20250123之前版本存在操作系统命令注入漏洞，该漏洞源于存在OS命令注入，可能导致执行任意OS命令。

N/A

N/A