Vulnerabilities

CVE-2023-47167

by Fred · 06/02/2024

A post authentication command injection vulnerability exists in the GRE policy functionality of Tp-Link ER7206 Omada Gigabit VPN Router 1.3.0 build 20230322 Rel.70591. A specially crafted HTTP request can lead to arbitrary command injection. An attacker can make an authenticated HTTP request to trigger this vulnerability.

Date published : 2024-02-06

https://talosintelligence.com/vulnerability_reports/TALOS-2023-1855

Similar

Tags: Cybersecurity Alert