TP-Link Product Security Update Advisory (CVE-2024-42815)

Sep 03 2024

Overview

An update has been released to address vulnerabilities in TP-Link Products. Users of the affected versions are advised to update to the latest version.

Affected Products

CVE-2024-42815

TP-Link RE365 version: V1_180213

Resolved Vulnerabilities

lack of length validation for the USER_AGENT field in /usr/bin/httpd, which could allow attackers to crash a remote target device or execute arbitrary commands (CVE-2024-42815)

Vulnerability Patches

The latest update provided the following product-specific vulnerability patches Please follow the instructions on the Referenced Sites[2] to update to the latest Vulnerability Patches version.

Referenced Sites

[1] CVE-2024-42815 Detail

https://nvd.nist.gov/vuln/detail/CVE-2024-42815

[2] Github/TP-Link

https://gist.github.com/XiaoCurry/14d46e0becd79d9bb9907f2fbe147cfe

TP-Link Product Security Update Advisory (CVE-2024-42815)

ManageEngine (Exchange Reporter Plus) Product August 2024 Security Update Advisory

Google Chrome Browser (128.0.6613.119/.120) Security Update Advisory

Tags:

ManageEngine (Exchange Reporter Plus) Product August 2024 Security Update Advisory

Google Chrome Browser (128.0.6613.119/.120) Security Update Advisory