← Back

Archer Ax10 Firmware

archer_ax10_firmware

Vendor: Tp Link • 4 CVEs

CVEs (4)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2023-40357
1Tp Link
4Archer A10 Firmware
Archer Ax10 FirmwareArcher Ax11000 Firmware+1 more
Nov 21, 2024
Sep 6, 2023
N/A· v4
8.0 HIGH· v3
N/A· v2
Multiple TP-LINK products allow a network-adjacent authenticated attacker to execute arbitrary OS commands. Affected products/versions are as follows: Archer AX50 firmware versions prior to 'Archer AX50(JP)_V1_230529', A...Show more
Multiple TP-LINK products allow a network-adjacent authenticated attacker to execute arbitrary OS commands. Affected products/versions are as follows: Archer AX50 firmware versions prior to 'Archer AX50(JP)_V1_230529', Archer A10 firmware versions prior to 'Archer A10(JP)_V2_230504', Archer AX10 firmware versions prior to 'Archer AX10(JP)_V1.2_230508', and Archer AX11000 firmware versions prior to 'Archer AX11000(JP)_V1_230523'.Show less
CVE-2023-34832
1Tp Link
1Archer Ax10 Firmware
Nov 21, 2024
Jun 16, 2023
N/A· v4
9.8 CRITICAL· v3
N/A· v2
TP-Link Archer AX10(EU)_V1.2_230220 was discovered to contain a buffer overflow via the function FUN_131e8 - 0x132B4.
CVE-2021-41451
1Tp Link
1Archer Ax10 Firmware
Nov 21, 2024
Dec 17, 2021
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
A misconfiguration in HTTP/1.0 and HTTP/1.1 of the web interface in TP-Link AX10v1 before V1_211117 allows a remote unauthenticated attacker to send a specially crafted HTTP request and receive a misconfigured HTTP/0.9 r...Show more
A misconfiguration in HTTP/1.0 and HTTP/1.1 of the web interface in TP-Link AX10v1 before V1_211117 allows a remote unauthenticated attacker to send a specially crafted HTTP request and receive a misconfigured HTTP/0.9 response, potentially leading into a cache poisoning attack.Show less
CVE-2021-40288
1Tp Link
1Archer Ax10 Firmware
Nov 21, 2024
Dec 7, 2021
N/A· v4
7.5 HIGH· v3
7.8 HIGH· v2
A denial-of-service attack in WPA2, and WPA3-SAE authentication methods in TP-Link AX10v1 before V1_211014, allows a remote unauthenticated attacker to disconnect an already connected wireless client via sending with a w...Show more
A denial-of-service attack in WPA2, and WPA3-SAE authentication methods in TP-Link AX10v1 before V1_211014, allows a remote unauthenticated attacker to disconnect an already connected wireless client via sending with a wireless adapter specific spoofed authentication framesShow less