{"uuid": "3df0a816-b69c-4178-9213-b36d5f5d6141", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-49134", "type": "seen", "source": "https://t.me/arpsyndicate/4454", "content": "#ExploitObserverAlert\n\nCVE-2023-49134\n\nDESCRIPTION: Exploit Observer has 2 entries in 1 file formats related to CVE-2023-49134. A command execution vulnerability exists in the tddpd enable_test_mode functionality of Tp-Link AC1350 Wireless MU-MIMO Gigabit Access Point (EAP225 V3) v5.1.0 Build 20220926 and Tp-Link N300 Wireless Access Point (EAP115 V4) v5.0.4 Build 20220216. A specially crafted series of network requests can lead to arbitrary command execution. An attacker can send a sequence of unauthenticated packets to trigger this vulnerability.This vulnerability impacts `uclited` on the EAP115(V4) 5.0.4 Build 20220216 of the N300 Wireless Gigabit Access Point.\n\nFIRST-EPSS: 0.000430000\nNVD-IS: 5.9\nNVD-ES: 2.2", "creation_timestamp": "2024-04-11T06:26:54.000000Z"}