VYPR
Unrated severityNVD Advisory· Published Jan 10, 2024· Updated Jun 17, 2025

CVE-2024-21821

CVE-2024-21821

Description

Multiple TP-LINK products allow a network-adjacent authenticated attacker with access to the product from the LAN port or Wi-Fi to execute arbitrary OS commands.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

7
  • TP-Link/Archer AX3000llm-create2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: firmware versions prior to "Archer AX3000(JP)_V1_1.1.2 Build 20231115"
  • TP-Link/Archer AX5400llm-create2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: firmware versions prior to "Archer AX5400(JP)_V1_1.1.2 Build 20231115"
  • TP-Link/Archer AXE75 V1llm-fuzzy2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: firmware versions prior to "Archer AXE75(JP)_V1_231115"
  • TP-Link/Archer Air R5v5
    Range: firmware versions prior to "Archer Air R5(JP)_V1_1.1.6 Build 20240508"

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.