SERVER-WEBAPP -- Snort has detected traffic exploiting vulnerabilities in web based applications on servers.
SERVER-WEBAPP TP LINK TL-WR849N Access Point command injection attempt
The rule looks for metacharacters associated with command injection in the vulnerable parameter.
This rule fires on attempts to exploit a remote code execution vulnerability in some versions of the TP LINK TL-WR849N Access Point.
No public information
No known false positives
Cisco Talos Intelligence Group
No rule groups
CVE-2020-9374 |
Loading description
|
Tactic: Execution
Technique: Execution through API
For reference, see the MITRE ATT&CK vulnerability types here: https://attack.mitre.org