TP-Link Archer AX-21 contains a command injection vulnerability that allows for remote code execution.
// weekly digest
// weekly digest
// weekly digest
2023-05-01 00:00 UTC 2023-05-07 23:59 UTC
// total
0
// critical
0
// high
0
// medium
0
// low
0
// new kev
3
// top critical
No CRITICAL CVEs published this week.
// top high
No HIGH CVEs published this week.
// new kev additions
TP-Link Archer AX-21 contains a command injection vulnerability that allows for remote code execution.
Apache Log4j2 contains a deserialization of untrusted data vulnerability due to the incomplete fix of CVE-2021-44228, where the Thread Context Lookup Pattern is vulnerable to remote code execution in certain non-default configurations.
Oracle WebLogic Server contains an unspecified vulnerability that allows an unauthenticated attacker with network access via T3, IIOP, to compromise Oracle WebLogic Server.