Main Vulnerability Database Exploits ID:8359 - Exploit for Code Injection in Archer AX50 - CVE-2022-30075

ID:8359 - Exploit for Code Injection in Archer AX50 - CVE-2022-30075

Published: September 12, 2022

Vulnerability identifier: #VU64168

Vulnerability risk: Low

CVE-ID: CVE-2022-30075

CWE-ID: CWE-94

Exploitation vector: Adjecent network

Vulnerable software:
Archer AX50

Link to public exploit:

https://github.com/M4fiaB0y/CVE-2022-30075

Vulnerability description

The vulnerability allows a remote user to execute arbitrary code on the target system.

The vulnerability exists due to a flaw in the backup and restore functionality. A remote administrator on the local network can send a specially crafted request and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Remediation

Install updates from vendor's website.

ID:8359 - Exploit for Code Injection in Archer AX50 - CVE-2022-30075

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human