CVE-2023-30383

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2023-30383
TP-LINK Archer C50v2 Archer C50(US)_V2_160801, TP-LINK Archer C20v1 Archer_C20_V1_150707, and TP-LINK Archer C2v1 Archer_C2_US__V1_170228 were discovered to contain a buffer overflow which may lead to a Denial of Service (DoS) when parsing crafted data.

7.5 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
http://tplink.com Product
https://gist.github.com/a2ure123/a4eda2813d85d8b414bb87e855ab4bf8 Third Party Advisory
https://www.tp-link.com/us/support/download/archer-c2/v1/#Firmware Product
https://www.tp-link.com/us/support/download/archer-c50/v2/#Firmware Product
https://www.tp-link.com/us/support/download/archer-c50/v2/#Firmware%29%2CTPLINK
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:tp-link:archer_c2_v1_firmware:170228:*:*:*:*:*:*:*
cpe:2.3:h:tp-link:archer_c2_v1:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:tp-link:archer_c20_firmware:150707:*:*:*:*:*:*:*
cpe:2.3:h:tp-link:archer_c20:1:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:tp-link:archer_c50_firmware:160801:*:*:*:*:*:*:*
cpe:2.3:h:tp-link:archer_c50:2:*:*:*:*:*:*:*
History

07 Nov 2023, 04:13

Type Values Removed Values Added
References
  • {'url': 'https://www.tp-link.com/us/support/download/archer-c50/v2/#Firmware),TPLINK', 'name': 'https://www.tp-link.com/us/support/download/archer-c50/v2/#Firmware),TPLINK', 'tags': ['Product'], 'refsource': 'MISC'}
  • () https://www.tp-link.com/us/support/download/archer-c50/v2/#Firmware%29%2CTPLINK -

28 Jul 2023, 13:09

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 7.5
CPE cpe:2.3:o:tp-link:archer_c50_firmware:160801:*:*:*:*:*:*:*
cpe:2.3:h:tp-link:archer_c20:1:*:*:*:*:*:*:*
cpe:2.3:h:tp-link:archer_c50:2:*:*:*:*:*:*:*
cpe:2.3:o:tp-link:archer_c20_firmware:150707:*:*:*:*:*:*:*
cpe:2.3:h:tp-link:archer_c2_v1:-:*:*:*:*:*:*:*
cpe:2.3:o:tp-link:archer_c2_v1_firmware:170228:*:*:*:*:*:*:*
CWE CWE-120
References (MISC) https://www.tp-link.com/us/support/download/archer-c50/v2/#Firmware - (MISC) https://www.tp-link.com/us/support/download/archer-c50/v2/#Firmware - Product
References (MISC) https://gist.github.com/a2ure123/a4eda2813d85d8b414bb87e855ab4bf8 - (MISC) https://gist.github.com/a2ure123/a4eda2813d85d8b414bb87e855ab4bf8 - Third Party Advisory
References (MISC) https://www.tp-link.com/us/support/download/archer-c50/v2/#Firmware),TPLINK - (MISC) https://www.tp-link.com/us/support/download/archer-c50/v2/#Firmware),TPLINK - Product
References (MISC) http://tplink.com - (MISC) http://tplink.com - Product
References (MISC) https://www.tp-link.com/us/support/download/archer-c2/v1/#Firmware - (MISC) https://www.tp-link.com/us/support/download/archer-c2/v1/#Firmware - Product
First Time Tp-link archer C2 V1
Tp-link archer C20 Firmware
Tp-link
Tp-link archer C2 V1 Firmware
Tp-link archer C20
Tp-link archer C50 Firmware
Tp-link archer C50

18 Jul 2023, 19:49

Type Values Removed Values Added
New CVE
Information

Published : 2023-07-18 19:15

Updated : 2023-12-10 15:14

NVD link : CVE-2023-30383

Mitre link : CVE-2023-30383

CVE.ORG link : CVE-2023-30383

JSON object : View

Products Affected

tp-link

  • archer_c20
  • archer_c50_firmware
  • archer_c2_v1_firmware
  • archer_c2_v1
  • archer_c50
  • archer_c20_firmware
CWE
CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')