On TP-Link TL-WR849N 0.9.1 4.16 devices, a remote command execution vulnerability in the diagnostics area can be exploited when an attacker sends specific shell metacharacters to the panel’s traceroute feature.
CPE | Name | Operator | Version |
---|---|---|---|
tl-wr849n_firmware | eq | 0.9.1-4.16 |