CVE-2023-32619 - Vulnerability Details - OpenCVE

Archer C50 firmware versions prior to 'Archer C50(JP)_V3_230505' and Archer C55 firmware versions prior to 'Archer C55(JP)_V1_230506' use hard-coded credentials to login to the affected device, which may allow a network-adjacent unauthenticated attacker to execute an arbitrary OS command.

No CVSS v4.0

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation none

Automatable no

Technical Impact total

Vendors	Products
Tp-link	Archer C50 V3 Archer C50 V3 Firmware Archer C55 Archer C55 Firmware

Configuration 1 [-]

AND

cpe:2.3:o:tp-link:archer_c55_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:tp-link:archer_c55:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:o:tp-link:archer_c50_v3_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:tp-link:archer_c50_v3:-:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://jvn.jp/en/vu/JVNVU99392903/
https://www.tp-link.com/jp/support/download/archer-c50/v3/#Firmware
https://www.tp-link.com/jp/support/download/archer-c55/#Firmware

History

Thu, 26 Sep 2024 21:30:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

MITRE

Status: PUBLISHED

Assigner: jpcert

Published: 2023-09-06T09:27:44.114Z

Updated: 2024-09-26T20:19:58.978Z

Reserved: 2023-08-15T07:33:32.104Z

Link: CVE-2023-32619

Vulnrichment

Updated: 2024-08-02T15:25:35.693Z

NVD

Status : Modified

Published: 2023-09-06T10:15:13.650

Modified: 2024-11-21T08:03:42.880

Link: CVE-2023-32619

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-32619", "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce", "state": "PUBLISHED", "assignerShortName": "jpcert", "dateReserved": "2023-08-15T07:33:32.104Z", "datePublished": "2023-09-06T09:27:44.114Z", "dateUpdated": "2024-09-26T20:19:58.978Z"}, "containers": {"cna": {"affected": [{"vendor": "TP-LINK", "product": "Archer C50", "versions": [{"version": "firmware versions prior to 'Archer C50(JP)_V3_230505'", "status": "affected"}]}, {"vendor": "TP-LINK", "product": "Archer C55", "versions": [{"version": "firmware versions prior to 'Archer C55(JP)_V1_230506'", "status": "affected"}]}], "descriptions": [{"lang": "en", "value": "Archer C50 firmware versions prior to 'Archer C50(JP)_V3_230505' and Archer C55 firmware versions prior to 'Archer C55(JP)_V1_230506' use hard-coded credentials to login to the affected device, which may allow a network-adjacent unauthenticated attacker to execute an arbitrary OS command."}], "problemTypes": [{"descriptions": [{"description": "Use of Hard-coded Credentials", "lang": "en", "type": "text"}]}], "references": [{"url": "https://www.tp-link.com/jp/support/download/archer-c50/v3/#Firmware"}, {"url": "https://www.tp-link.com/jp/support/download/archer-c55/#Firmware"}, {"url": "https://jvn.jp/en/vu/JVNVU99392903/"}], "providerMetadata": {"orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce", "shortName": "jpcert", "dateUpdated": "2023-09-06T09:27:44.114Z"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T15:25:35.693Z"}, "title": "CVE Program Container", "references": [{"url": "https://www.tp-link.com/jp/support/download/archer-c50/v3/#Firmware", "tags": ["x_transferred"]}, {"url": "https://www.tp-link.com/jp/support/download/archer-c55/#Firmware", "tags": ["x_transferred"]}, {"url": "https://jvn.jp/en/vu/JVNVU99392903/", "tags": ["x_transferred"]}]}, {"problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-798", "lang": "en", "description": "CWE-798 Use of Hard-coded Credentials"}]}], "affected": [{"vendor": "tp-link", "product": "archer_c55_firmware", "cpes": ["cpe:2.3:o:tp-link:archer_c55_firmware:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "230506", "versionType": "custom"}]}, {"vendor": "tp-link", "product": "archer_c50_v3_firmware", "cpes": ["cpe:2.3:o:tp-link:archer_c50_v3_firmware:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "230505", "versionType": "custom"}]}], "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.8, "attackVector": "ADJACENT_NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2024-09-26T20:10:36.573148Z", "id": "CVE-2023-32619", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-26T20:19:58.978Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://www.tp-link.com/jp/support/download/archer-c50/v3/#Firmware", "tags": ["x_transferred"]}, {"url": "https://www.tp-link.com/jp/support/download/archer-c55/#Firmware", "tags": ["x_transferred"]}, {"url": "https://jvn.jp/en/vu/JVNVU99392903/", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T15:25:35.693Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.8, "attackVector": "ADJACENT_NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2023-32619", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2024-09-26T20:10:36.573148Z"}}}], "affected": [{"cpes": ["cpe:2.3:o:tp-link:archer_c55_firmware:*:*:*:*:*:*:*:*"], "vendor": "tp-link", "product": "archer_c55_firmware", "versions": [{"status": "affected", "version": "0", "lessThan": "230506", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:o:tp-link:archer_c50_v3_firmware:*:*:*:*:*:*:*:*"], "vendor": "tp-link", "product": "archer_c50_v3_firmware", "versions": [{"status": "affected", "version": "0", "lessThan": "230505", "versionType": "custom"}], "defaultStatus": "unknown"}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-798", "description": "CWE-798 Use of Hard-coded Credentials"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-26T20:17:07.742Z"}}], "cna": {"affected": [{"vendor": "TP-LINK", "product": "Archer C50", "versions": [{"status": "affected", "version": "firmware versions prior to 'Archer C50(JP)_V3_230505'"}]}, {"vendor": "TP-LINK", "product": "Archer C55", "versions": [{"status": "affected", "version": "firmware versions prior to 'Archer C55(JP)_V1_230506'"}]}], "references": [{"url": "https://www.tp-link.com/jp/support/download/archer-c50/v3/#Firmware"}, {"url": "https://www.tp-link.com/jp/support/download/archer-c55/#Firmware"}, {"url": "https://jvn.jp/en/vu/JVNVU99392903/"}], "descriptions": [{"lang": "en", "value": "Archer C50 firmware versions prior to 'Archer C50(JP)_V3_230505' and Archer C55 firmware versions prior to 'Archer C55(JP)_V1_230506' use hard-coded credentials to login to the affected device, which may allow a network-adjacent unauthenticated attacker to execute an arbitrary OS command."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "text", "description": "Use of Hard-coded Credentials"}]}], "providerMetadata": {"orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce", "shortName": "jpcert", "dateUpdated": "2023-09-06T09:27:44.114Z"}}}, "cveMetadata": {"cveId": "CVE-2023-32619", "state": "PUBLISHED", "dateUpdated": "2024-09-26T20:19:58.978Z", "dateReserved": "2023-08-15T07:33:32.104Z", "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce", "datePublished": "2023-09-06T09:27:44.114Z", "assignerShortName": "jpcert"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:tp-link:archer_c55_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "4AF28B84-B90E-47B6-B2E8-F78CC909EEC0", "versionEndExcluding": "230506", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:tp-link:archer_c55:-:*:*:*:*:*:*:*", "matchCriteriaId": "1DE7FC0D-0A09-42F6-BA31-597D38208F61", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:tp-link:archer_c50_v3_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "7B4081EE-A5EE-41E0-BA3F-39F1BE7799AC", "versionEndExcluding": "230505", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:tp-link:archer_c50_v3:-:*:*:*:*:*:*:*", "matchCriteriaId": "01EE9C6D-D758-4015-B197-545269BF2283", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "Archer C50 firmware versions prior to 'Archer C50(JP)_V3_230505' and Archer C55 firmware versions prior to 'Archer C55(JP)_V1_230506' use hard-coded credentials to login to the affected device, which may allow a network-adjacent unauthenticated attacker to execute an arbitrary OS command."}, {"lang": "es", "value": "Las versiones de firmware de Archer C50 anteriores a 'Archer C50(JP)_V3_230505' y las versiones de firmware de Archer C55 anteriores a 'Archer C55(JP)_V1_230506' utilizan credenciales codificadas para iniciar sesi\u00f3n en el dispositivo afectado, lo que puede permitir que un atacante no autenticado adyacente a la red para ejecutar un comando arbitrario del sistema operativo.\n"}], "id": "CVE-2023-32619", "lastModified": "2024-11-21T08:03:42.880", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2023-09-06T10:15:13.650", "references": [{"source": "vultures@jpcert.or.jp", "tags": ["Third Party Advisory"], "url": "https://jvn.jp/en/vu/JVNVU99392903/"}, {"source": "vultures@jpcert.or.jp", "tags": ["Product"], "url": "https://www.tp-link.com/jp/support/download/archer-c50/v3/#Firmware"}, {"source": "vultures@jpcert.or.jp", "tags": ["Product"], "url": "https://www.tp-link.com/jp/support/download/archer-c55/#Firmware"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://jvn.jp/en/vu/JVNVU99392903/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Product"], "url": "https://www.tp-link.com/jp/support/download/archer-c50/v3/#Firmware"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Product"], "url": "https://www.tp-link.com/jp/support/download/archer-c55/#Firmware"}], "sourceIdentifier": "vultures@jpcert.or.jp", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-798"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-798"}], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}