Skip to main content

CVE-2017-15616

Description

TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the new-interface variable in the phddns.lua file.

nvd
CVE ID: CVE-2017-15616
Base Score: 7.2
Base Severity: HIGH
Vector String:CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Refrence: NVD