Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-43135

There is an unauthorized access vulnerability in TP-LINK ER5120G 4.0 2.0.0 Build 210817 Rel.80868n, which allows attackers to obtain sensitive information of the device without authentication, obtain user tokens, and ultimately log in to the device backend management.

Published

2023-09-20T22:15:13.640

Last Modified

2024-11-21T08:23:45.607

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 9.8 (CRITICAL)

Weaknesses

Type: Primary
CWE-862

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	tp-link	tl-er5120g_firmware	2.0.0	Yes
Hardware	tp-link	tl-er5120g	4.0	No

References

https://github.com/7R4C4R/CVE/blob/main/TPLINK-TL-ER5120G/unauthorized%20access/Unauthorized%20Access%20Vulnerability.md Exploit, Third Party Advisory ([email protected])
https://github.com/7R4C4R/CVE/blob/main/TPLINK-TL-ER5120G/unauthorized%20access/Unauthorized%20Access%20Vulnerability.md Exploit, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)