Vulnerabilities > TP Link
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-01-23 | CVE-2022-41505 | Unspecified vulnerability in Tp-Link Tapo C200 V1 Firmware An access control issue on TP-LInk Tapo C200 V1 devices allows physically proximate attackers to obtain root access by connecting to the UART pins, interrupting the boot process, and setting an init=/bin/sh value. high complexity tp-link | 6.4 |
| 2023-01-19 | CVE-2021-37774 | Unspecified vulnerability in Tp-Link Tl-Wdr7660 Firmware 2.0.30 An issue was discovered in function httpProcDataSrv in TL-WDR7660 2.0.30 that allows attackers to execute arbitrary code. low complexity tp-link | 8.0 |
| 2023-01-17 | CVE-2023-22303 | Improper Authentication vulnerability in Tp-Link Tl-Sg105Pe Firmware 1.0.0 TP-Link SG105PE firmware prior to 'TL-SG105PE(UN) 1.0_1.0.0 Build 20221208' contains an authentication bypass vulnerability. | 9.8 |
| 2023-01-11 | CVE-2022-4498 | Out-of-bounds Write vulnerability in Tp-Link Archer C5 Firmware and Tl-Wr710N Firmware In TP-Link routers, Archer C5 and WR710N-V1, running the latest available code, when receiving HTTP Basic Authentication the httpd service can be sent a crafted packet that causes a heap overflow. | 9.8 |
| 2023-01-11 | CVE-2022-4499 | Information Exposure Through Discrepancy vulnerability in Tp-Link Archer C5 Firmware and Tl-Wr710N Firmware TP-Link routers, Archer C5 and WR710N-V1, using the latest software, the strcmp function used for checking credentials in httpd, is susceptible to a side-channel attack. | 7.5 |
| 2022-12-30 | CVE-2022-48194 | Unrestricted Upload of File with Dangerous Type vulnerability in Tp-Link Tl-Wr902Ac Firmware 3.0.9.1 TP-Link TL-WR902AC devices through V3 0.9.1 allow remote authenticated attackers to execute arbitrary code or cause a Denial of Service (DoS) by uploading a crafted firmware update because the signature check is inadequate. | 8.8 |
| 2022-12-20 | CVE-2022-46139 | Unspecified vulnerability in Tp-Link Tl-Wr940N V4 Firmware TP-Link TL-WR940N V4 3.16.9 and earlier allows authenticated attackers to cause a Denial of Service (DoS) via uploading a crafted firmware image during the firmware update process. | 6.5 |
| 2022-12-20 | CVE-2022-46428 | Download of Code Without Integrity Check vulnerability in Tp-Link Tl-Wr1043Nd V1 Firmware TP-Link TL-WR1043ND V1 3.13.15 and earlier allows authenticated attackers to execute arbitrary code or cause a Denial of Service (DoS) via uploading a crafted firmware image during the firmware update process. | 4.8 |
| 2022-12-20 | CVE-2022-46430 | Download of Code Without Integrity Check vulnerability in Tp-Link products TP-Link TL-WR740N V1 and V2 v3.12.4 and earlier allows authenticated attackers to execute arbitrary code or cause a Denial of Service (DoS) via uploading a crafted firmware image during the firmware update process. | 4.8 |
| 2022-12-20 | CVE-2022-46432 | Unspecified vulnerability in Tp-Link Tl-Wr743Nd V1 Firmware An exploitable firmware modification vulnerability was discovered on TP-Link TL-WR743ND V1. | 7.5 |