← Back

Tl Sg2008 Firmware

tl-sg2008_firmware

Vendor: Tp Link • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2021-31659
1Tp Link
2Tl Sg2005 Firmware
Tl Sg2008 Firmware
Nov 21, 2024
Jun 10, 2021
N/A· v4
8.8 HIGH· v3
6.8 MEDIUM· v2
TP-Link TL-SG2005, TL-SG2008, etc. 1.0.0 Build 20180529 Rel.40524 is vulnerable to Cross Site Request Forgery (CSRF). All configuration information is placed in the URL, without any additional token authentication inform...Show more
TP-Link TL-SG2005, TL-SG2008, etc. 1.0.0 Build 20180529 Rel.40524 is vulnerable to Cross Site Request Forgery (CSRF). All configuration information is placed in the URL, without any additional token authentication information. A malicious link opened by the switch administrator may cause the password of the switch to be modified and the configuration file to be tampered with.Show less
CVE-2021-31658
1Tp Link
2Tl Sg2005 Firmware
Tl Sg2008 Firmware
Nov 21, 2024
Jun 10, 2021
N/A· v4
8.1 HIGH· v3
5.8 MEDIUM· v2
TP-Link TL-SG2005, TL-SG2008, etc. 1.0.0 Build 20180529 Rel.40524 is affected by an Array index error. The interface that provides the "device description" function only judges the length of the received data, and does n...Show more
TP-Link TL-SG2005, TL-SG2008, etc. 1.0.0 Build 20180529 Rel.40524 is affected by an Array index error. The interface that provides the "device description" function only judges the length of the received data, and does not filter special characters. This vulnerability will cause the application to crash, and all device configuration information will be erased.Show less