Vulnerabilities > CVE-2022-32058 - Infinite Loop vulnerability in Tp-Link Tl-Wr741N Firmware and Tl-Wr742N Firmware

CVSS 7.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

COMPLETE

network

low complexity

tp-link

CWE-835

NVD

Published: 2022-07-07

Updated: 2022-07-18

Summary

An infinite loop in the function httpRpmPass of TP-Link TL-WR741N/TL-WR742N V1/V2/V3_130415 allows attackers to cause a Denial of Service (DoS) via a crafted packet.

Vulnerable Configurations

Part	Description	Count
OS	Tp-Link TP Link TL Wr741N Firmware - TP Link TL Wr741N Firmware V3_130415 TP Link TL Wr742N Firmware - TP Link TL Wr742N Firmware V3_130415	4
Hardware	Tp-Link TP Link TL Wr741N V1 TP Link TL Wr741N V2 TP Link TL Wr741N V3 TP Link TL Wr742N V1 TP Link TL Wr742N V2 TP Link TL Wr742N V3	6

Common Weakness Enumeration (CWE)

CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')

References

https://github.com/whiter6666/CVE/blob/main/TP-Link%20TL-WR741NTL-WR742N%20.md