ID
VAR-202309-0275
CVE
CVE-2023-36489
DESCRIPTION
Multiple TP-LINK products allow a network-adjacent unauthenticated attacker to execute arbitrary OS commands. Affected products/versions are as follows: TL-WR802N firmware versions prior to 'TL-WR802N(JP)_V4_221008', TL-WR841N firmware versions prior to 'TL-WR841N(JP)_V14_230506', and TL-WR902AC firmware versions prior to 'TL-WR902AC(JP)_V3_230506'.
Trust: 1.0
sources:
NVD: CVE-2023-36489
AFFECTED PRODUCTS
| vendor: | tp link | model: | tl-wr802n | scope: | lt | version: | 221008 | Trust: 1.0 |
| vendor: | tp link | model: | tl-wr902ac | scope: | lt | version: | 230506 | Trust: 1.0 |
| vendor: | tp link | model: | tl-wr841n | scope: | lt | version: | 230506 | Trust: 1.0 |
sources:
NVD: CVE-2023-36489
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||
|
|
sources:
NVD: CVE-2023-36489
PROBLEMTYPE DATA
| problemtype: | CWE-78 | Trust: 1.0 |
sources:
NVD: CVE-2023-36489
CONFIGURATIONS
sources:
NVD: CVE-2023-36489
EXTERNAL IDS
| db: | JVN | id: | JVNVU99392903 | Trust: 1.0 |
| db: | NVD | id: | CVE-2023-36489 | Trust: 1.0 |
sources:
NVD: CVE-2023-36489
REFERENCES
| url: | https://www.tp-link.com/jp/support/download/tl-wr902ac/#firmware | Trust: 1.0 |
| url: | https://www.tp-link.com/jp/support/download/tl-wr802n/#firmware | Trust: 1.0 |
| url: | https://www.tp-link.com/jp/support/download/tl-wr841n/v14/#firmware | Trust: 1.0 |
| url: | https://jvn.jp/en/vu/jvnvu99392903/ | Trust: 1.0 |
sources:
NVD: CVE-2023-36489
SOURCES
| db: | NVD | id: | CVE-2023-36489 |
LAST UPDATE DATE
2023-09-12T01:56:05.149000+00:00
SOURCES UPDATE DATE
| db: | NVD | id: | CVE-2023-36489 | date: | 2023-09-11T13:36:00 |
SOURCES RELEASE DATE
| db: | NVD | id: | CVE-2023-36489 | date: | 2023-09-06T10:15:00 |