Cisco’s Talos security group disclosed four vulnerabilities that impact the TP-Link TL-R600VPN router. Several of the discovered bugs could lead to remote code execution.
TP-Link offers different models of small and home office (SOHO) routers.
Talos said the main root cause of two of the vulnerabilities (CVE-2018-3948 and CVE-2018-3949) were lack of input sanitisation and could be exploited without authentication.
The other two bugs (CVE-2018-3950 and CVE-2018-3951) were caused by parsing errors, but would require an authenticated session to exploit.
“The remote code execution is done under the context of HTTPD However, since the HTTPD process is running under root, an attacker can run code with elevated privileges,” Talos stated in the report on Monday.