CVE-2023-2646

EPSS 0.02%
Published 11.05.2023 08:15:08
Last modified 24.01.2025 17:15:12
Source cna@vuldb.com
Teams watchlist Login
Open Login

A vulnerability has been found in TP-Link Archer C7v2 v2_en_us_180114 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component GET Request Parameter Handler. The manipulation leads to denial of service. The attack can only be done within the local network. The associated identifier of this vulnerability is VDB-228775. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

Affected products Warnungen 0 Metrics 5 CWE 1 References 5

Data is provided by the National Vulnerability Database (NVD)

Tp-link ≫ Archer C7 Firmware Version180114

Tp-link ≫ Archer C7 Version2.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.02%	0.045

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
cna@vuldb.com	4.5	0.9	3.6	CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
nvd@nist.gov	6.5	2.8	3.6	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
134c704f-9b21-4f2e-91b3-4a467353bcc0	6.5	2.8	3.6	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
cna@vuldb.com	5	4.1	6.9	AV:A/AC:L/Au:M/C:N/I:N/A:C

CWE-404 Improper Resource Shutdown or Release

The product does not release or incorrectly releases a resource before it is made available for re-use.

https://vuldb.com/?ctiid.228775

Third Party Advisory

https://vuldb.com/?id.228775

Third Party Advisory

https://nvd.nist.gov/vuln/detail/CVE-2023-2646

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-2646

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-2646

EUVD