CVE-2018-11481

Posted on by admin

CVE-2018-11481

TP-LINK IPC TL-IPC223(P)-6, TL-IPC323K-D, TL-IPC325(KP)-*, and TL-IPC40A-4 devices allow authenticated remote code execution via crafted JSON data because /usr/lib/lua/luci/torchlight/validator.lua does not block various punctuation characters.

Source: CVE-2018-11481

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다