CVE-2018-11482 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	9.8 CRITICAL	NETWORK	LOW	NONE	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 63%

Affected Products (NVD)

Vendor	Product	Version
tp-link	ipc_tl-ipc223\(p\)-6_firmware	𝑥 < 1.0.21
tp-link	tl-ipc323k-d_firmware	𝑥 < 1.0.21
tp-link	tl-ipc325\(kp\)_firmware	𝑥 < 1.0.21
tp-link	tl-ipc40a-4_firmware	𝑥 < 1.0.21

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-798 - Use of Hard-coded Credentials
The software contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data.

References

https://github.com/yough3rt/IOT-pwn-for-fun/blob/master/TP-LINK-login-Escalation-of-Privileges

https://www.us-cert.gov/ncas/bulletins/SB18-155

https://github.com/yough3rt/IOT-pwn-for-fun/blob/master/TP-LINK-login-Escalation-of-Privileges