CVE-2017-15615

Published: Jan 11, 2018Modified: Nov 21, 2024

7.2

Vector

CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.2 / Impact: 5.9

Source: NVD

Description

TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the lcpechointerval variable in the pptp_client.lua file.

Affected (38)

Products: Tp Link: Er5110g Firmware, Er5120g Firmware, Er5510g Firmware, Er5520g Firmware, R4149g Firmware, R4239g Firmware, R4299g Firmware, R473gp Ac Firmware, R473g Firmware, R473p Ac Firmware, R473 Firmware, R478g+ Firmware, R478+ Firmware, R483g Firmware, R483 Firmware, R488 Firmware, War1300l Firmware, War1750l Firmware, War2600l Firmware, War302 Firmware, War450l Firmware, War450 Firmware, War458l Firmware, War458 Firmware, War900l Firmware, Wvr1300g Firmware, Wvr1300l Firmware, Wvr1750l Firmware, Wvr2600l Firmware, Wvr300 Firmware, Wvr302 Firmware, Wvr4300l Firmware, Wvr450l Firmware, Wvr450 Firmware, Wvr458l Firmware, Wvr900g Firmware, Wvr900l Firmware

37 products

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link Er5110g Firmware	All versions

Running on/with	Platform Versions
Tp Link Er5110g	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link Er5120g Firmware	All versions

Running on/with	Platform Versions
Tp Link Er5120g	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link Er5510g Firmware	All versions

Running on/with	Platform Versions
Tp Link Er5510g	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link Er5520g Firmware	All versions

Running on/with	Platform Versions
Tp Link Er5520g	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link R4149g Firmware	All versions

Running on/with	Platform Versions
Tp Link R4149g	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link R4239g Firmware	All versions

Running on/with	Platform Versions
Tp Link R4239g	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link R4299g Firmware	All versions

Running on/with	Platform Versions
Tp Link R4299g	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link R473gp Ac Firmware	All versions

Running on/with	Platform Versions
Tp Link R473gp Ac	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link R473g Firmware	All versions

Running on/with	Platform Versions
Tp Link R473g	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link R473p Ac Firmware	All versions

Running on/with	Platform Versions
Tp Link R473p Ac	All versions

Configuration K

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link R473 Firmware	All versions

Running on/with	Platform Versions
Tp Link R473	All versions

Configuration L

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link R478g+ Firmware	All versions

Running on/with	Platform Versions
Tp Link R478g+	All versions

Configuration M

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link R478 Firmware	All versions

Running on/with	Platform Versions
Tp Link R478	All versions

Configuration N

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link R478+ Firmware	All versions

Running on/with	Platform Versions
Tp Link R478+	All versions

Configuration O

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link R483g Firmware	All versions

Running on/with	Platform Versions
Tp Link R483g	All versions

Configuration P

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link R483 Firmware	All versions

Running on/with	Platform Versions
Tp Link R483	All versions

Configuration Q

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link R488 Firmware	All versions

Running on/with	Platform Versions
Tp Link R488	All versions

Configuration R

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link War1300l Firmware	All versions

Running on/with	Platform Versions
Tp Link War1300l	All versions

Configuration S

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link War1750l Firmware	All versions

Running on/with	Platform Versions
Tp Link War1750l	All versions

Configuration T

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link War2600l Firmware	All versions

Running on/with	Platform Versions
Tp Link War2600l	All versions

Configuration U

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link War302 Firmware	All versions

Running on/with	Platform Versions
Tp Link War302	All versions

Configuration V

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link War450l Firmware	All versions

Running on/with	Platform Versions
Tp Link War450l	All versions

Configuration W

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link War450 Firmware	All versions

Running on/with	Platform Versions
Tp Link War450	All versions

Configuration X

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link War458l Firmware	All versions

Running on/with	Platform Versions
Tp Link War458l	All versions

Configuration Y

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link War458 Firmware	All versions

Running on/with	Platform Versions
Tp Link War458	All versions

Configuration Z

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link War900l Firmware	All versions

Running on/with	Platform Versions
Tp Link War900l	All versions

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link Wvr1300g Firmware	All versions

Running on/with	Platform Versions
Tp Link Wvr1300g	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link Wvr1300l Firmware	All versions

Running on/with	Platform Versions
Tp Link Wvr1300l	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link Wvr1750l Firmware	All versions

Running on/with	Platform Versions
Tp Link Wvr1750l	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link Wvr2600l Firmware	All versions

Running on/with	Platform Versions
Tp Link Wvr2600l	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link Wvr300 Firmware	All versions

Running on/with	Platform Versions
Tp Link Wvr300	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link Wvr302 Firmware	All versions

Running on/with	Platform Versions
Tp Link Wvr302	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link Wvr4300l Firmware	All versions

Running on/with	Platform Versions
Tp Link Wvr4300l	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link Wvr450l Firmware	Version 1.0161125

Running on/with	Platform Versions
Tp Link Wvr450l	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link Wvr450 Firmware	All versions

Running on/with	Platform Versions
Tp Link Wvr450	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link Wvr458l Firmware	All versions

Running on/with	Platform Versions
Tp Link Wvr458l	All versions

Configuration K

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link Wvr900g Firmware	Version 3.0_170306

Running on/with	Platform Versions
Tp Link Wvr900g	All versions

Configuration L

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link Wvr900l Firmware	All versions

Running on/with	Platform Versions
Tp Link Wvr900l	All versions

References (4)

http://www.securityfocus.com/archive/1/541655/100/0/threaded

Source: cve@mitre.org

ExploitThird Party AdvisoryVDB Entry

https://github.com/chunibalon/Vulnerability/blob/master/CVE-2017-15613_to_CVE-2017-15637.txt

Source: cve@mitre.org

ExploitThird Party Advisory

http://www.securityfocus.com/archive/1/541655/100/0/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party AdvisoryVDB Entry

https://github.com/chunibalon/Vulnerability/blob/master/CVE-2017-15613_to_CVE-2017-15637.txt

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

Timeline

No history available yet.