7.2
CVE-2024-21827
- EPSS 0.15%
- Veröffentlicht 25.06.2024 14:15:10
- Zuletzt bearbeitet 04.11.2025 18:15:50
- Quelle talos-cna@cisco.com
- CVE-Watchlists
- Unerledigt
A leftover debug code vulnerability exists in the cli_server debug functionality of Tp-Link ER7206 Omada Gigabit VPN Router 1.4.1 Build 20240117 Rel.57421. A specially crafted series of network requests can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger this vulnerability.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Tp-link ≫ Er7206 Firmware Version1.4.1 Updatebuild_20240117_rel_57421
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
Login| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.15% | 0.365 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| talos-cna@cisco.com | 7.2 | 1.2 | 5.9 |
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
|
CWE-489 Active Debug Code
The product is deployed to unauthorized actors with debugging code still enabled or active, which can create unintended entry points or expose sensitive information.