Cyber Resilience

CVE-2023-31701

HighPublic PoCRCE

Published: 17 May 2023

Published
17 May 2023
Modified
22 January 2025
KEV Added
Patch
CVSS Score v3.1 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score 0.1187 93.9th percentile
Risk Priority 25 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2023-31701 is a high-severity Command Injection (CWE-77) vulnerability in Tp-Link Tl-Wpa4530 Kit Firmware. Its CVSS base score is 8.8 (High).

Operationally, ranked in the top 6.1% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

Deeper analysis

TP-Link TL-WPA4530 KIT firmware versions V2 (EU)_170406 and V2 (EU)_161115 contain a command-injection vulnerability (CWE-77) reachable through the _httpRpmPlcDeviceRemove handler. The flaw permits an authenticated user to supply crafted input that is passed directly to a system command, resulting in arbitrary command execution on the device. The issue carries a CVSS 3.1 score of 8.8, reflecting network adjacency, low attack complexity, and low required privileges.

An attacker who has obtained valid credentials, or who can reach the web interface from an adjacent network position, can invoke the affected endpoint to execute operating-system commands. Successful exploitation grants the ability to read or modify device configuration, exfiltrate data, or pivot to other hosts on the local network.

Public references consist of a technical write-up hosted on GitHub that details the request format and reproduction steps; no vendor advisory or firmware patch information is supplied in the available sources. The associated EPSS score has remained flat at 0.1187 since disclosure, indicating no measurable increase in observed exploitation activity.

EU & UK References

Vulnerability details

TP-Link TL-WPA4530 KIT V2 (EU)_170406 and V2 (EU)_161115 is vulnerable to Command Injection via _httpRpmPlcDeviceRemove.

CWE(s)

Related Threats

No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.

Affected Assets

tp-link
tl-wpa4530 kit firmware
161115, 170406

Mitigating Controls

No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.

References