VYPR

Archer C5400X

by TP-Link

CVEs (2)

  • CVE-2024-5035HigMay 27, 2024
    risk 0.58cvss epss 0.03

    The affected device expose a network service called "rftest" that is vulnerable to unauthenticated command injection on ports TCP/8888, TCP/8889, and TCP/8890. By successfully exploiting this flaw, remote unauthenticated attacker can gain arbitrary command execution on the…

  • CVE-2023-39935Sep 6, 2023
    risk 0.00cvss epss 0.00

    Archer C5400 firmware versions prior to 'Archer C5400(JP)_V2_230506' allows a network-adjacent authenticated attacker to execute arbitrary OS commands.