2023-09-06 09:35:41
jpcert
PUBLISHED
Multiple TP-LINK products allow a network-adjacent unauthenticated attacker to execute arbitrary OS commands. Affected products/versions are as follows: TL-WR802N firmware versions prior to TL-WR802N(JP)_V4_221008, TL-WR841N firmware versions prior to TL-WR841N(JP)_V14_230506, and TL-WR902AC firmware versions prior to TL-WR902AC(JP)_V3_230506.