The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a high-severity security vulnerability in TP-Link wireless routers (CVE-2023-33538) to its Known Exploited Vulnerabilities catalog, indicating evidence of active exploitation. The flaw, a command injection vulnerability with a CVSS score of 8.8, affects several TP-Link models. CISA cautioned that some of these devices may no longer be supported, advising users to cease their use if no mitigation is feasible. Security researchers have not confirmed any exploitation in the wild nor provided clear information on how to exploit the vulnerability.
The U.S. Cybersecurity and Infrastructure Security Agency added a high-severity security flaw in TP-Link wireless routers to its Known Exploited Vulnerabilities catalog.
CISA warns users that the affected TP-Link models may be end-of-life, urging them to discontinue use if there are no available mitigations.
Collection
[
|
...
]