Vulnerabilities > CVE-2022-25072 - Out-of-bounds Write vulnerability in Tp-Link Archer A54 Firmware 210111

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

tp-link

CWE-787

critical

NVD

Published: 2022-02-24

Updated: 2022-03-03

Summary

TP-Link Archer A54 Archer A54(US)_V1_210111 routers were discovered to contain a stack overflow in the function DM_ Fillobjbystr(). This vulnerability allows unauthenticated attackers to execute arbitrary code.

Vulnerable Configurations

Part	Description	Count
OS	Tp-Link TP Link Archer A54 Firmware 210111	1
Hardware	Tp-Link TP Link Archer A54 1 TP Link Archer A54 1.6	2

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://github.com/EPhaha/IOT_vuln/tree/main/TP-Link/Archer%20A54