CVE-2021-44827
HIGHTP-Link Archer C20i Firmware < 170221 - Authenticated OS Command Injection via X_TP_ExternalIPv6Address Parameter
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2021-44827. PoCs published by full-disclosure.
AI-analyzed exploit summary This PoC exploits an authenticated remote code execution vulnerability in TP-Link Archer C20i routers by injecting a command into the X_TP_ExternalIPv6Address parameter, which spawns a telnet service for remote access. The exploit requires valid credentials and demonstrates successful command execution on the target device.
Description
There is remote authenticated OS command injection on TP-Link Archer C20i 0.9.1 3.2 v003a.0 Build 170221 Rel.55462n devices vie the X_TP_ExternalIPv6Address HTTP parameter, allowing a remote attacker to run arbitrary commands on the router with root privileges.
Exploits (1)
This PoC exploits an authenticated remote code execution vulnerability in TP-Link Archer C20i routers by injecting a command into the X_TP_ExternalIPv6Address parameter, which spawns a telnet service for remote access. The exploit requires valid credentials and demonstrates successful command execution on the target device.
References (3)
Scores
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H