Vulnerabilities > TP Link
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-10-18 | CVE-2022-42202 | Cross-site Scripting vulnerability in Tp-Link Tl-Wr841N Firmware 4.17.16Build120201Rel.54750N TP-Link TL-WR841N 8.0 4.17.16 Build 120201 Rel.54750n is vulnerable to Cross Site Scripting (XSS). | 6.1 |
| 2022-09-28 | CVE-2022-40486 | Code Injection vulnerability in Tp-Link Archer Ax10 V1 Firmware 1.3.1 TP Link Archer AX10 V1 Firmware Version 1.3.1 Build 20220401 Rel. | 8.8 |
| 2022-09-12 | CVE-2022-37860 | OS Command Injection vulnerability in Tp-Link M7350 Firmware 190531 The web configuration interface of the TP-Link M7350 V3 with firmware version 190531 is affected by a pre-authentication command injection vulnerability. | 9.8 |
| 2022-08-23 | CVE-2021-42232 | OS Command Injection vulnerability in Tp-Link Archer A7 Firmware 210519 TP-Link Archer A7 Archer A7(US)_V5_210519 is affected by a command injection vulnerability in /usr/bin/tddp. | 9.8 |
| 2022-07-14 | CVE-2022-30024 | Classic Buffer Overflow vulnerability in Tp-Link products A buffer overflow in the httpd daemon on TP-Link TL-WR841N V12 (firmware version 3.16.9) devices allows an authenticated remote attacker to execute arbitrary code via a GET request to the page for the System Tools of the Wi-Fi network. | 8.8 |
| 2022-07-07 | CVE-2022-32058 | Infinite Loop vulnerability in Tp-Link Tl-Wr741N Firmware and Tl-Wr742N Firmware An infinite loop in the function httpRpmPass of TP-Link TL-WR741N/TL-WR742N V1/V2/V3_130415 allows attackers to cause a Denial of Service (DoS) via a crafted packet. | 7.8 |
| 2022-06-30 | CVE-2022-33087 | Out-of-bounds Write vulnerability in Tp-Link Archer A5 Firmware and Archer C50 Firmware A stack overflow in the function DM_ In fillobjbystr() of TP-Link Archer C50&A5(US)_V5_200407 allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request. | 7.8 |
| 2022-06-09 | CVE-2022-30075 | Unspecified vulnerability in Tp-Link Archer Ax50 Firmware 210730 In TP-Link Router AX50 firmware 210730 and older, import of a malicious backup file via web interface can lead to remote code execution due to improper validation. | 8.8 |
| 2022-05-25 | CVE-2022-29402 | Missing Authentication for Critical Function vulnerability in Tp-Link Tl-Wr840N Firmware TP-Link TL-WR840N EU v6.20 was discovered to contain insecure protections for its UART console. | 7.2 |
| 2022-05-10 | CVE-2022-26987 | Out-of-bounds Write vulnerability in multiple products TP-Link TL-WDR7660 2.0.30, Mercury D196G 20200109_2.0.4, and Fast FAC1900R 20190827_2.0.2 routers have a stack overflow issue in `MmtAtePrase` function. | 7.2 |