Sign-up

ID

VAR-202302-1636


CVE

CVE-2023-0936


TITLE

TP-LINK Technologies  of  Archer C50  Vulnerability in improper shutdown and release of resources in

Trust: 0.8

sources: JVNDB: JVNDB-2023-004369

DESCRIPTION

A vulnerability was found in TP-Link Archer C50 V2_160801. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Web Management Interface. The manipulation leads to denial of service. The attack can only be initiated within the local network. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-221552. TP-LINK Technologies of Archer C50 Contains vulnerabilities related to improper shutdown and release of resources.Service operation interruption (DoS) It may be in a state

Trust: 1.71

sources: NVD: CVE-2023-0936 // JVNDB: JVNDB-2023-004369 // VULMON: CVE-2023-0936

AFFECTED PRODUCTS

vendor:tp linkmodel:archer c50scope:eqversion:v2_160801

Trust: 1.0

vendor:tp linkmodel:archer c50scope:eqversion:v2 160801

Trust: 0.8

vendor:tp linkmodel:archer c50scope:eqversion: -

Trust: 0.8

vendor:tp linkmodel:archer c50scope: - version: -

Trust: 0.8

sources: JVNDB: JVNDB-2023-004369 // NVD: CVE-2023-0936

CVSS

SEVERITY

CVSSV2

CVSSV3

cna@vuldb.com: CVE-2023-0936
value: MEDIUM

Trust: 1.0

nvd@nist.gov: CVE-2023-0936
value: MEDIUM

Trust: 1.0

NVD: CVE-2023-0936
value: MEDIUM

Trust: 0.8

CNNVD: CNNVD-202302-1648
value: MEDIUM

Trust: 0.6

cna@vuldb.com: CVE-2023-0936
severity: MEDIUM
baseScore: 6.1
vectorString: AV:A/AC:L/AU:N/C:N/I:N/A:C
accessVector: ADJACENT_NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 6.5
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.0

cna@vuldb.com: CVE-2023-0936
baseSeverity: MEDIUM
baseScore: 6.5
vectorString: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
attackVector: ADJACENT
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: HIGH
exploitabilityScore: 2.8
impactScore: 3.6
version: 3.1

Trust: 2.0

NVD: CVE-2023-0936
baseSeverity: MEDIUM
baseScore: 6.5
vectorString: CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
attackVector: ADJACENT NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: HIGH
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: JVNDB: JVNDB-2023-004369 // CNNVD: CNNVD-202302-1648 // NVD: CVE-2023-0936 // NVD: CVE-2023-0936

PROBLEMTYPE DATA

problemtype:CWE-404

Trust: 1.0

problemtype:Improper shutdown and release of resources (CWE-404) [ others ]

Trust: 0.8

sources: JVNDB: JVNDB-2023-004369 // NVD: CVE-2023-0936

THREAT TYPE

remote or local

Trust: 0.6

sources: CNNVD: CNNVD-202302-1648

TYPE

other

Trust: 0.6

sources: CNNVD: CNNVD-202302-1648

EXTERNAL IDS

db:NVDid:CVE-2023-0936

Trust: 3.3

db:VULDBid:221552

Trust: 2.5

db:JVNDBid:JVNDB-2023-004369

Trust: 0.8

db:CNNVDid:CNNVD-202302-1648

Trust: 0.6

db:VULMONid:CVE-2023-0936

Trust: 0.1

sources: VULMON: CVE-2023-0936 // JVNDB: JVNDB-2023-004369 // CNNVD: CNNVD-202302-1648 // NVD: CVE-2023-0936

REFERENCES

url:https://vuldb.com/?id.221552

Trust: 2.5

url:https://vuldb.com/?ctiid.221552

Trust: 1.7

url:https://nvd.nist.gov/vuln/detail/cve-2023-0936

Trust: 0.8

url:https://cxsecurity.com/cveshow/cve-2023-0936/

Trust: 0.6

url:https://cwe.mitre.org/data/definitions/404.html

Trust: 0.1

url:https://nvd.nist.gov

Trust: 0.1

sources: VULMON: CVE-2023-0936 // JVNDB: JVNDB-2023-004369 // CNNVD: CNNVD-202302-1648 // NVD: CVE-2023-0936

SOURCES

db:VULMONid:CVE-2023-0936
db:JVNDBid:JVNDB-2023-004369
db:CNNVDid:CNNVD-202302-1648
db:NVDid:CVE-2023-0936

LAST UPDATE DATE

2024-08-14T13:21:05.601000+00:00


SOURCES UPDATE DATE

db:VULMONid:CVE-2023-0936date:2023-02-21T00:00:00
db:JVNDBid:JVNDB-2023-004369date:2023-10-30T03:18:00
db:CNNVDid:CNNVD-202302-1648date:2023-03-03T00:00:00
db:NVDid:CVE-2023-0936date:2024-05-17T02:17:40.037

SOURCES RELEASE DATE

db:VULMONid:CVE-2023-0936date:2023-02-21T00:00:00
db:JVNDBid:JVNDB-2023-004369date:2023-10-30T00:00:00
db:CNNVDid:CNNVD-202302-1648date:2023-02-21T00:00:00
db:NVDid:CVE-2023-0936date:2023-02-21T10:15:11.517