Security Advisory

CVE-2018-11481

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-05-30 21:00:00

Last updated 2024-08-05 08:10:14

Assigner mitre

State PUBLISHED

Description

TP-LINK IPC TL-IPC223(P)-6, TL-IPC323K-D, TL-IPC325(KP)-*, and TL-IPC40A-4 devices allow authenticated remote code execution via crafted JSON data because /usr/lib/lua/luci/torchlight/validator.lua does not block various punctuation characters.

← Browse all CVEs View on cve.org ↗