Archer C5 and C7 Firmware Vulnerability: Arbitrary OS Command Execution

Archer C5 and C7 Firmware Vulnerability: Arbitrary OS Command Execution

CVE-2023-39224 · HIGH Severity

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Archer C5 firmware all versions and Archer C7 firmware versions prior to 'Archer C7(JP)_V2_230602' allow a network-adjacent authenticated attacker to execute arbitrary OS commands. Note that Archer C5 is no longer supported, therefore the update for this product is not provided.

Learn more about our Network Penetration Testing.