VYPR
Unrated severityNVD Advisory· Published Oct 11, 2013· Updated Jun 16, 2026

CVE-2013-2580

CVE-2013-2580

Description

Unrestricted file upload vulnerability in cgi-bin/uploadfile in TP-Link IP Cameras TL-SC3130, TL-SC3130G, TL-SC3171, TL-SC3171G, and possibly other models before beta firmware LM.1.6.18P12_sign6, allows remote attackers to upload arbitrary files, then accessing it via a direct request to the file in the mnt/mtd directory.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

6
  • TP-Link/Tl Sc31302 versions
    cpe:2.3:h:tp-link:tl-sc3130:-:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:h:tp-link:tl-sc3130:-:*:*:*:*:*:*:*
    • (no CPE)range: < LM.1.6.18P12_sign6 (beta firmware)
  • cpe:2.3:h:tp-link:tl-sc3130g:-:*:*:*:*:*:*:*
  • cpe:2.3:h:tp-link:tl-sc3171:-:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:h:tp-link:tl-sc3171:-:*:*:*:*:*:*:*
    • cpe:2.3:h:tp-link:tl-sc3171g:-:*:*:*:*:*:*:*
  • cpe:2.3:o:tp-link:lm_firmware:*:*:*:*:*:*:*:*
    Range: <=1.6.18p12_sign5

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.