CVE-2023-27359

CRITICAL 9.8

TP-Link AX1800 hotplugd Firewall Rule Race Condition Vulnerability

CVSS Score

9.8

EPSS Score

0.0%

EPSS Percentile

0th

TP-Link AX1800 hotplugd Firewall Rule Race Condition Vulnerability. This vulnerability allows remote attackers to gain access to LAN-side services on affected installations of TP-Link Archer AX21 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the hotplugd daemon. The issue results from firewall rule handling that allows an attacker access to resources that should be available to the LAN interface only. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the root user. . Was ZDI-CAN-19664.

CWE	CWE-362
Vendor	tp-link
Product	ax1800
Published	May 3, 2024
Last Updated	Sep 25, 2024

Stay Ahead of the Next One

Get instant alerts for tp-link ax1800

Be the first to know when new critical vulnerabilities affecting tp-link ax1800 are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected Versions

TP-Link / AX1800

AX21(US)_V3_1.1.1 Build 20220603

References

NVD ↗ CVE.org ↗ EPSS Data ↗

zerodayinitiative.com: https://www.zerodayinitiative.com/advisories/ZDI-23-452/