Vulnerabilities > TP Link

DATE CVE VULNERABILITY TITLE RISK
2022-12-20 CVE-2022-46912 Unspecified vulnerability in Tp-Link Tl-Wr841N Firmware and Tl-Wr841Nd V7 Firmware
An issue in the firmware update process of TP-Link TL-WR841N / TL-WA841ND V7 3.13.9 and earlier allows attackers to execute arbitrary code or cause a Denial of Service (DoS) via uploading a crafted firmware image.
network
low complexity
tp-link
8.8
2022-12-20 CVE-2022-46914 Unspecified vulnerability in Tp-Link Tl-Wa801N Firmware and Tl-Wa801Nd V1 Firmware
An issue in the firmware update process of TP-LINK TL-WA801N / TL-WA801ND V1 v3.12.16 and earlier allows attackers to execute arbitrary code or cause a Denial of Service (DoS) via uploading a crafted firmware image.
network
low complexity
tp-link
8.8
2022-12-07 CVE-2022-41783 Unspecified vulnerability in Tp-Link Re3000 Firmware 1.0/2.0
tdpServer of TP-Link RE300 V1 improperly processes its input, which may allow an attacker to cause a denial-of-service (DoS) condition of the product's OneMesh function.
local
low complexity
tp-link
5.5
2022-12-06 CVE-2022-4296 Unspecified vulnerability in Tp-Link Tl-Wr740N Firmware
A vulnerability classified as problematic has been found in TP-Link TL-WR740N.
local
low complexity
tp-link
5.5
2022-10-18 CVE-2022-41540 Use of Hard-coded Credentials vulnerability in Tp-Link Ax10 Firmware V1211117
The web app client of TP-Link AX10v1 V1_211117 uses hard-coded cryptographic keys when communicating with the router.
network
high complexity
tp-link CWE-798
5.9
2022-10-18 CVE-2022-41541 Authentication Bypass by Capture-replay vulnerability in Tp-Link Ax10 Firmware V1211117
TP-Link AX10v1 V1_211117 allows attackers to execute a replay attack by using a previously transmitted encrypted authentication message and valid authentication token.
network
high complexity
tp-link CWE-294
8.1
2022-10-18 CVE-2022-42202 Cross-site Scripting vulnerability in Tp-Link Tl-Wr841N Firmware 4.17.16Build120201Rel.54750N
TP-Link TL-WR841N 8.0 4.17.16 Build 120201 Rel.54750n is vulnerable to Cross Site Scripting (XSS).
network
low complexity
tp-link CWE-79
6.1
2022-09-28 CVE-2022-40486 Code Injection vulnerability in Tp-Link Archer Ax10 V1 Firmware 1.3.1
TP Link Archer AX10 V1 Firmware Version 1.3.1 Build 20220401 Rel.
network
low complexity
tp-link CWE-94
8.8
2022-09-12 CVE-2022-37860 OS Command Injection vulnerability in Tp-Link M7350 Firmware 190531
The web configuration interface of the TP-Link M7350 V3 with firmware version 190531 is affected by a pre-authentication command injection vulnerability.
network
low complexity
tp-link CWE-78
critical
9.8
2022-08-23 CVE-2021-42232 OS Command Injection vulnerability in Tp-Link Archer A7 Firmware 210519
TP-Link Archer A7 Archer A7(US)_V5_210519 is affected by a command injection vulnerability in /usr/bin/tddp.
network
low complexity
tp-link CWE-78
critical
9.8