CVEs-PoC/2020/CVE-2020-5797.md

### [CVE-2020-5797](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-5797)
![](https://img.shields.io/static/v1?label=Product&message=TP-Link%20Archer%20C9%20A1&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=UNIX%20Symbolic%20Link%20(Symlink)%20Following&color=brighgreen)

### Description

UNIX Symbolic Link (Symlink) Following in TP-Link Archer C9(US)_V1_180125 firmware allows an unauthenticated actor, with physical access and network access, to read sensitive files and write to a limited set of files after plugging a crafted USB drive into the router.

### POC

#### Reference
- https://www.tenable.com/security/research/tra-2020-60

#### Github
No PoCs found on GitHub currently.