CVE-2024-21833 - OpenCVE

Multiple TP-LINK products allow a network-adjacent unauthenticated attacker with access to the product to execute arbitrary OS commands. The affected device, with the initial configuration, allows login only from the LAN port or Wi-Fi.

No CVSS v4.0

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Tp-link	Archer Ax3000 Archer Ax3000 Firmware Archer Ax5400 Archer Ax5400 Firmware Archer Axe75 Archer Axe75 Firmware Deco X50 Deco X50 Firmware Deco Xe200 Deco Xe200 Firmware

Configuration 1 [-]

AND

cpe:2.3:o:tp-link:archer_ax3000_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:tp-link:archer_ax3000:1.0:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:o:tp-link:archer_ax5400_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:tp-link:archer_ax5400:1.0:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:o:tp-link:deco_x50_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:tp-link:deco_x50:1.0:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:o:tp-link:deco_xe200_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:tp-link:deco_xe200:1.0:*:*:*:*:*:*:*

Configuration 5 [-]

AND

cpe:2.3:o:tp-link:archer_axe75_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:tp-link:archer_axe75:1.0:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://jvn.jp/en/vu/JVNVU91401812/
https://www.tp-link.com/jp/support/download/archer-ax3000/#Firmware
https://www.tp-link.com/jp/support/download/archer-ax5400/#Firmware
https://www.tp-link.com/jp/support/download/archer-axe75/#Firmware
https://www.tp-link.com/jp/support/download/deco-x50/v1/#Firmware
https://www.tp-link.com/jp/support/download/deco-xe200/#Firmware

History

No history.

MITRE

Status: PUBLISHED

Assigner: jpcert

Published: 2024-01-10T23:25:25.755Z

Updated: 2024-08-01T22:27:36.321Z

Reserved: 2024-01-04T00:17:53.070Z

Link: CVE-2024-21833

Vulnrichment

No data.

NVD

Status : Modified

Published: 2024-01-11T00:15:44.683

Modified: 2024-07-03T23:15:02.253

Link: CVE-2024-21833

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-21833", "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce", "state": "PUBLISHED", "assignerShortName": "jpcert", "dateReserved": "2024-01-04T00:17:53.070Z", "datePublished": "2024-01-10T23:25:25.755Z", "dateUpdated": "2024-08-01T22:27:36.321Z"}, "containers": {"cna": {"affected": [{"vendor": "TP-Link", "product": "Archer AX3000", "versions": [{"version": "firmware versions prior to \"Archer AX3000(JP)_V1_1.1.2 Build 20231115\"", "status": "affected"}]}, {"vendor": "TP-Link", "product": "Archer AX5400", "versions": [{"version": "firmware versions prior to \"Archer AX5400(JP)_V1_1.1.2 Build 20231115\"", "status": "affected"}]}, {"vendor": "TP-Link", "product": "Archer AXE75", "versions": [{"version": "firmware versions prior to \"Archer AXE75(JP)_V1_231115\"", "status": "affected"}]}, {"vendor": "TP-Link", "product": "Deco X50", "versions": [{"version": "firmware versions prior to \"Deco X50(JP)_V1_1.4.1 Build 20231122\"", "status": "affected"}]}, {"vendor": "TP-Link", "product": "Deco XE200", "versions": [{"version": "firmware versions prior to \"Deco XE200(JP)_V1_1.2.5 Build 20231120\"", "status": "affected"}]}], "descriptions": [{"lang": "en", "value": "Multiple TP-LINK products allow a network-adjacent unauthenticated attacker with access to the product to execute arbitrary OS commands. The affected device, with the initial configuration, allows login only from the LAN port or Wi-Fi."}], "problemTypes": [{"descriptions": [{"description": "OS command injection", "lang": "en", "type": "text"}]}], "references": [{"url": "https://www.tp-link.com/jp/support/download/archer-ax3000/#Firmware"}, {"url": "https://www.tp-link.com/jp/support/download/archer-ax5400/#Firmware"}, {"url": "https://www.tp-link.com/jp/support/download/archer-axe75/#Firmware"}, {"url": "https://www.tp-link.com/jp/support/download/deco-x50/v1/#Firmware"}, {"url": "https://www.tp-link.com/jp/support/download/deco-xe200/#Firmware"}, {"url": "https://jvn.jp/en/vu/JVNVU91401812/"}], "providerMetadata": {"orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce", "shortName": "jpcert", "dateUpdated": "2024-07-03T23:03:48.528Z"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-01T22:27:36.321Z"}, "title": "CVE Program Container", "references": [{"url": "https://www.tp-link.com/jp/support/download/archer-ax3000/#Firmware", "tags": ["x_transferred"]}, {"url": "https://www.tp-link.com/jp/support/download/archer-ax5400/#Firmware", "tags": ["x_transferred"]}, {"url": "https://www.tp-link.com/jp/support/download/archer-axe75/#Firmware", "tags": ["x_transferred"]}, {"url": "https://www.tp-link.com/jp/support/download/deco-x50/v1/#Firmware", "tags": ["x_transferred"]}, {"url": "https://www.tp-link.com/jp/support/download/deco-xe200/#Firmware", "tags": ["x_transferred"]}, {"url": "https://jvn.jp/en/vu/JVNVU91401812/", "tags": ["x_transferred"]}]}]}}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:tp-link:archer_ax3000_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "5E511835-B9F8-48F6-85D0-92BD9EF6B93C", "versionEndExcluding": "1.1.2", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:tp-link:archer_ax3000:1.0:*:*:*:*:*:*:*", "matchCriteriaId": "60E38020-7C23-4B8E-B04C-DCC67A386004", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:tp-link:archer_ax5400_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "116BFAEE-8C19-4101-9754-CD55C951AA34", "versionEndExcluding": "1.1.2", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:tp-link:archer_ax5400:1.0:*:*:*:*:*:*:*", "matchCriteriaId": "76D439C9-D0A9-40C5-A91A-3FE205A0139D", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:tp-link:deco_x50_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "49F92855-4C16-4785-BCB0-DF648574AE5B", "versionEndExcluding": "1.4.1", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:tp-link:deco_x50:1.0:*:*:*:*:*:*:*", "matchCriteriaId": "B07192F7-E04C-43BA-9452-B970EF8796A7", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:tp-link:deco_xe200_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "1E38052E-2386-4DE1-9E3C-E6C39B2720A8", "versionEndExcluding": "1.2.5", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:tp-link:deco_xe200:1.0:*:*:*:*:*:*:*", "matchCriteriaId": "92D840AF-F273-4B48-B8A2-4081E3D484A6", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:tp-link:archer_axe75_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "A08D2944-9064-46DC-91AC-9E6BC1BA274A", "versionEndExcluding": "1.1.9", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:tp-link:archer_axe75:1.0:*:*:*:*:*:*:*", "matchCriteriaId": "EB55E594-03BC-425B-8CED-A7DC00A2DCBD", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Multiple TP-LINK products allow a network-adjacent unauthenticated attacker with access to the product to execute arbitrary OS commands. The affected device, with the initial configuration, allows login only from the LAN port or Wi-Fi."}, {"lang": "es", "value": "M\u00faltiples productos TP-LINK permiten que un atacante no autenticado adyacente a la red con acceso al producto ejecute comandos arbitrarios del sistema operativo. Los productos/versiones afectados son los siguientes: Versiones de firmware de Archer AX3000 anteriores a \"Archer AX3000(JP)_V1_1.1.2 Build 20231115\", Versiones de firmware de Archer AX5400 anteriores a \"Archer AX5400(JP)_V1_1.1.2 Build 20231115\", Versiones de firmware de Archer AXE75 anteriores a \"Archer AXE75(JP)_V1_231115\", versiones de firmware Deco X50 anteriores a \"Deco X50(JP)_V1_1.4.1 Build 20231122\" y versiones de firmware Deco XE200 anteriores a \"Deco XE200(JP)_V1_1.2.5 Build 20231120\"."}], "id": "CVE-2024-21833", "lastModified": "2024-07-03T23:15:02.253", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2024-01-11T00:15:44.683", "references": [{"source": "vultures@jpcert.or.jp", "tags": ["Third Party Advisory"], "url": "https://jvn.jp/en/vu/JVNVU91401812/"}, {"source": "vultures@jpcert.or.jp", "tags": ["Product"], "url": "https://www.tp-link.com/jp/support/download/archer-ax3000/#Firmware"}, {"source": "vultures@jpcert.or.jp", "tags": ["Product"], "url": "https://www.tp-link.com/jp/support/download/archer-ax5400/#Firmware"}, {"source": "vultures@jpcert.or.jp", "tags": ["Product"], "url": "https://www.tp-link.com/jp/support/download/archer-axe75/#Firmware"}, {"source": "vultures@jpcert.or.jp", "tags": ["Product"], "url": "https://www.tp-link.com/jp/support/download/deco-x50/v1/#Firmware"}, {"source": "vultures@jpcert.or.jp", "tags": ["Product"], "url": "https://www.tp-link.com/jp/support/download/deco-xe200/#Firmware"}], "sourceIdentifier": "vultures@jpcert.or.jp", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-78"}], "source": "nvd@nist.gov", "type": "Primary"}]}