cnvd - cnvd-2018-23627

cnvd-2018-23627

Vulnerability from cnvd

Title: TP-Link TL-R600VPN HTTP Server拒绝服务漏洞

Description:

TP-Link TL-R600VPN是中国普联（TP-LINK）公司的一款企业级路由器。HTTP Server是其中的一个HTTP服务器。

TP-Link TL-R600VPN HWv3 FRNv1.3.0版本和HWv2 FRNv1.2.3版本中的HTTP Server存在拒绝服务漏洞。攻击者可借助特制的URL利用该漏洞造成设备无法对请求进行响应，导致拒绝服务。

Severity: 中

Patch Name: TP-Link TL-R600VPN HTTP Server拒绝服务漏洞的补丁

Patch Description:

TP-Link TL-R600VPN是中国普联（TP-LINK）公司的一款企业级路由器。HTTP Server是其中的一个HTTP服务器。

TP-Link TL-R600VPN HWv3 FRNv1.3.0版本和HWv2 FRNv1.2.3版本中的HTTP Server存在拒绝服务漏洞。攻击者可借助特制的URL利用该漏洞造成设备无法对请求进行响应，导致拒绝服务。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description:

目前厂商已发布升级补丁以修复漏洞，详情请关注厂商主页： https://www.tp-link.com/us/products/details/cat-4909_TL-R600VPN.html

Reference: https://www.talosintelligence.com/vulnerability_reports/TALOS-2018-0617

Impacted products

Name
['TP-Link TL-R600VPN HWv3 FRNv1.3.0', 'TP-Link TL-R600VPN HWv2 FRNv1.2.3']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2018-3948"
    }
  },
  "description": "TP-Link TL-R600VPN\u662f\u4e2d\u56fd\u666e\u8054\uff08TP-LINK\uff09\u516c\u53f8\u7684\u4e00\u6b3e\u4f01\u4e1a\u7ea7\u8def\u7531\u5668\u3002HTTP Server\u662f\u5176\u4e2d\u7684\u4e00\u4e2aHTTP\u670d\u52a1\u5668\u3002\n\nTP-Link TL-R600VPN HWv3 FRNv1.3.0\u7248\u672c\u548cHWv2 FRNv1.2.3\u7248\u672c\u4e2d\u7684HTTP Server\u5b58\u5728\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u501f\u52a9\u7279\u5236\u7684URL\u5229\u7528\u8be5\u6f0f\u6d1e\u9020\u6210\u8bbe\u5907\u65e0\u6cd5\u5bf9\u8bf7\u6c42\u8fdb\u884c\u54cd\u5e94\uff0c\u5bfc\u81f4\u62d2\u7edd\u670d\u52a1\u3002",
  "discovererName": "Cisco Talos",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8be6\u60c5\u8bf7\u5173\u6ce8\u5382\u5546\u4e3b\u9875\uff1a\r\nhttps://www.tp-link.com/us/products/details/cat-4909_TL-R600VPN.html",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2018-23627",
  "openTime": "2018-11-22",
  "patchDescription": "TP-Link TL-R600VPN\u662f\u4e2d\u56fd\u666e\u8054\uff08TP-LINK\uff09\u516c\u53f8\u7684\u4e00\u6b3e\u4f01\u4e1a\u7ea7\u8def\u7531\u5668\u3002HTTP Server\u662f\u5176\u4e2d\u7684\u4e00\u4e2aHTTP\u670d\u52a1\u5668\u3002\r\n\r\nTP-Link TL-R600VPN HWv3 FRNv1.3.0\u7248\u672c\u548cHWv2 FRNv1.2.3\u7248\u672c\u4e2d\u7684HTTP Server\u5b58\u5728\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u501f\u52a9\u7279\u5236\u7684URL\u5229\u7528\u8be5\u6f0f\u6d1e\u9020\u6210\u8bbe\u5907\u65e0\u6cd5\u5bf9\u8bf7\u6c42\u8fdb\u884c\u54cd\u5e94\uff0c\u5bfc\u81f4\u62d2\u7edd\u670d\u52a1\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "TP-Link TL-R600VPN HTTP Server\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "TP-Link TL-R600VPN HWv3 FRNv1.3.0",
      "TP-Link TL-R600VPN HWv2 FRNv1.2.3"
    ]
  },
  "referenceLink": "https://www.talosintelligence.com/vulnerability_reports/TALOS-2018-0617",
  "serverity": "\u4e2d",
  "submitTime": "2018-11-21",
  "title": "TP-Link TL-R600VPN HTTP Server\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e"
}

CVE-2018-3948 (GCVE-0-2018-3948)

Vulnerability from cvelistv5

Published

2018-11-30 17:00

Modified

2024-09-17 04:13

Severity ?

7.5 (High) - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE

denial of service

Summary

An exploitable denial-of-service vulnerability exists in the URI-parsing functionality of the TP-Link TL-R600VPN HTTP server. A specially crafted URL can cause the server to stop responding to requests, resulting in downtime for the management portal. An attacker can send either an unauthenticated or authenticated web request to trigger this vulnerability.

References

▼	URL	Tags
	https://talosintelligence.com/vulnerability_reports/TALOS-2018-0617	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	TP-Link	Version: TP-Link TL-R600VPN HWv3 FRNv1.3.0 TP-Link TL-R600VPN HWv2 FRNv1.2.3

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T04:57:24.484Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://talosintelligence.com/vulnerability_reports/TALOS-2018-0617"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "TP-Link",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "TP-Link TL-R600VPN HWv3 FRNv1.3.0 TP-Link TL-R600VPN HWv2 FRNv1.2.3"
            }
          ]
        }
      ],
      "datePublic": "2018-11-19T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "An exploitable denial-of-service vulnerability exists in the URI-parsing functionality of the TP-Link TL-R600VPN HTTP server. A specially crafted URL can cause the server to stop responding to requests, resulting in downtime for the management portal. An attacker can send either an unauthenticated or authenticated web request to trigger this vulnerability."
        }
      ],
      "metrics": [
        {
          "cvssV3_0": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "denial of service",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2022-04-19T18:06:45",
        "orgId": "b86d76f8-0f8a-4a96-a78d-d8abfc7fc29b",
        "shortName": "talos"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://talosintelligence.com/vulnerability_reports/TALOS-2018-0617"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "talos-cna@cisco.com",
          "DATE_PUBLIC": "2018-11-19T00:00:00",
          "ID": "CVE-2018-3948",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "TP-Link",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "TP-Link TL-R600VPN HWv3 FRNv1.3.0 TP-Link TL-R600VPN HWv2 FRNv1.2.3"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "An exploitable denial-of-service vulnerability exists in the URI-parsing functionality of the TP-Link TL-R600VPN HTTP server. A specially crafted URL can cause the server to stop responding to requests, resulting in downtime for the management portal. An attacker can send either an unauthenticated or authenticated web request to trigger this vulnerability."
            }
          ]
        },
        "impact": {
          "cvss": {
            "baseScore": 7.5,
            "baseSeverity": "High",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "denial of service"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://talosintelligence.com/vulnerability_reports/TALOS-2018-0617",
              "refsource": "MISC",
              "url": "https://talosintelligence.com/vulnerability_reports/TALOS-2018-0617"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "b86d76f8-0f8a-4a96-a78d-d8abfc7fc29b",
    "assignerShortName": "talos",
    "cveId": "CVE-2018-3948",
    "datePublished": "2018-11-30T17:00:00Z",
    "dateReserved": "2018-01-02T00:00:00",
    "dateUpdated": "2024-09-17T04:13:43.613Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted