{"uuid": "f0aa8a6a-63f0-441c-bbf1-afaa3dbe0f5f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-1389", "type": "seen", "source": "https://t.me/arpsyndicate/833", "content": "#ExploitObserverAlert\n\nCVE-2023-1389\n\nDESCRIPTION: Exploit Observer has 15 entries related to CVE-2023-1389. TP-Link Archer AX21 (AX1800) firmware versions before 1.1.4 Build 20230219 contained a command injection vulnerability in the country form of the /cgi-bin/luci;stok=/locale endpoint on the web management interface. Specifically, the country parameter of the write operation was not sanitized before being used in a call to popen(), allowing an unauthenticated attacker to inject commands, which would be run as root, with a simple POST request.\n\nFIRST-EPSS: 0.063550000\nNVD-IS: 5.9\nNVD-ES: 2.8", "creation_timestamp": "2023-12-01T06:57:33.000000Z"}