CVE-2017-15631
UnknownEPSS 4.37%
Last modified
CVE-2017-15631 is a vulnerability of currently unknown severity. TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the new-workmode variable in the pptp_client.lua file.. EPSS estimates a 4.37% chance of exploitation in the next 30 days.
Description
TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the new-workmode variable in the pptp_client.lua file.
Metrics
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Tp-Link | Er5110g Firmware | All versions |
| Tp-Link | Er5120g Firmware | All versions |
| Tp-Link | Er5510g Firmware | All versions |
| Tp-Link | Er5520g Firmware | All versions |
| Tp-Link | R4149g Firmware | All versions |
| Tp-Link | R4239g Firmware | All versions |
| Tp-Link | R4299g Firmware | All versions |
| Tp-Link | R473gp-Ac Firmware | All versions |
| Tp-Link | R473g Firmware | All versions |
| Tp-Link | R473p-Ac Firmware | All versions |
| Tp-Link | R473 Firmware | All versions |
| Tp-Link | R478g\+ Firmware | All versions |
| Tp-Link | R478 Firmware | All versions |
| Tp-Link | R478\+ Firmware | All versions |
| Tp-Link | R483g Firmware | All versions |
| Tp-Link | R483 Firmware | All versions |
| Tp-Link | R488 Firmware | All versions |
| Tp-Link | War1300l Firmware | All versions |
| Tp-Link | War1750l Firmware | All versions |
| Tp-Link | War2600l Firmware | All versions |
| Tp-Link | War302 Firmware | All versions |
| Tp-Link | War450l Firmware | All versions |
| Tp-Link | War450 Firmware | All versions |
| Tp-Link | War458l Firmware | All versions |
| Tp-Link | War458 Firmware | All versions |
| Tp-Link | War900l Firmware | All versions |
| Tp-Link | Wvr1300g Firmware | All versions |
| Tp-Link | Wvr1300l Firmware | All versions |
| Tp-Link | Wvr1750l Firmware | All versions |
| Tp-Link | Wvr2600l Firmware | All versions |
| Tp-Link | Wvr300 Firmware | All versions |
| Tp-Link | Wvr302 Firmware | All versions |
| Tp-Link | Wvr4300l Firmware | All versions |
| Tp-Link | Wvr450l Firmware | 1.0161125 |
| Tp-Link | Wvr450 Firmware | All versions |
| Tp-Link | Wvr458l Firmware | All versions |
| Tp-Link | Wvr900g Firmware | 3.0_170306 |
| Tp-Link | Wvr900l Firmware | All versions |
References
- http://www.securityfocus.com/archive/1/541655/100/0/threadedExploit, Third Party Advisory, VDB Entry
- https://github.com/chunibalon/Vulnerability/blob/master/CVE-2017-15613_to_CVE-2017-15637.txtExploit, Third Party Advisory
- http://www.securityfocus.com/archive/1/541655/100/0/threadedExploit, Third Party Advisory, VDB Entry
- https://github.com/chunibalon/Vulnerability/blob/master/CVE-2017-15613_to_CVE-2017-15637.txtExploit, Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2017-15631?
TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the new-workmode variable in the pptp_client.lua file.
How severe is CVE-2017-15631?
Severity scoring for CVE-2017-15631 is pending analysis. The EPSS model estimates a 4.37% probability of exploitation in the next 30 days.
How do I fix CVE-2017-15631?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.
Are you affected by CVE-2017-15631?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST