Security Advisory

CVE-2024-38471

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-07-04 00:49:13

Last updated 2025-03-13 13:17:03

Assigner jpcert

State PUBLISHED

Description

Multiple TP-LINK products allow a network-adjacent attacker with an administrative privilege to execute arbitrary OS commands by restoring a crafted backup file. The affected device, with the initial configuration, allows login only from the LAN port or Wi-Fi.

← Browse all CVEs View on cve.org ↗