2023-09-06 09:21:35
jpcert
PUBLISHED
Multiple TP-LINK products allow a network-adjacent authenticated attacker to execute arbitrary OS commands. Affected products/versions are as follows: Archer AX50 firmware versions prior to Archer AX50(JP)_V1_230529, Archer A10 firmware versions prior to Archer A10(JP)_V2_230504, Archer AX10 firmware versions prior to Archer AX10(JP)_V1.2_230508, and Archer AX11000 firmware versions prior to Archer AX11000(JP)_V1_230523.