CVE-2023-36498

high

Description

A post-authentication command injection vulnerability exists in the PPTP client functionality of Tp-Link ER7206 Omada Gigabit VPN Router 1.3.0 build 20230322 Rel.70591. A specially crafted HTTP request can lead to arbitrary command injection. An attacker can make an authenticated HTTP request to trigger this vulnerability and gain access to an unrestricted shell.

References

https://blog.talosintelligence.com/multiple-vulnerabilities-in-tp-link-omada-system/

https://www.talosintelligence.com/vulnerability_reports/TALOS-2023-1853

https://talosintelligence.com/vulnerability_reports/TALOS-2023-1853

Details

Source: Mitre, NVD

Published: 2024-02-06

Updated: 2025-11-04

Risk Information

CVSS v2

Base Score: 8.3

Vector: CVSS2#AV:N/AC:L/Au:M/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 7.2

Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Severity: High

EPSS

EPSS: 0.00781