CVE-2023-42005 – IBM Db2 on Cloud Pak for Data Vulnerability

May 30, 2024

Check Point VPN Gateway Products Targeted in Zero-Day Attacks

May 30, 2024

CVE-2024-5035 – TP-Link Archer C4500X Vulnerability

May 30, 2024

Severity

High

Analysis Summary

CVE-2024-5035

TP-Link Archer C4500X could allow a remote attacker to execute arbitrary commands on the system, caused by improper input validation by the rftest network service. By sending a specially crafted request, an attacker could exploit this vulnerability to execute arbitrary commands with elevated privileges on the device.

Impact

Gain Access

Indicators of Compromise

CVE

CVE-2024-5035

Affected Vendors

TP-Link

Affected Products

TP-Link Archer C4500X 1_1.1.6

Remediation

Upgrade to the latest version of TP-Link Archer C4500X, available from the TP-Link Website.

TP-Link Website

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

Chinese APT Groups Weaponize Routers for Stealth Espionage Operations – Active IOCs

CVE-2025-48700 – Zimbra Collaboration Vulnerability

Multiple NETGEAR Products Vulnerabilities

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

CVE-2023-42005 – IBM Db2 on Cloud Pak for Data Vulnerability

Check Point VPN Gateway Products Targeted in Zero-Day Attacks

Severity

High

Analysis Summary

Indicators of Compromise

CVE

Affected Vendors

Affected Products

Remediation