Vulnerabilities > TP Link
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-10-18 | CVE-2022-41540 | Use of Hard-coded Credentials vulnerability in Tp-Link Ax10 Firmware V1211117 The web app client of TP-Link AX10v1 V1_211117 uses hard-coded cryptographic keys when communicating with the router. | 5.9 |
| 2022-10-18 | CVE-2022-41541 | Authentication Bypass by Capture-replay vulnerability in Tp-Link Ax10 Firmware V1211117 TP-Link AX10v1 V1_211117 allows attackers to execute a replay attack by using a previously transmitted encrypted authentication message and valid authentication token. | 8.1 |
| 2022-10-18 | CVE-2022-42202 | Cross-site Scripting vulnerability in Tp-Link Tl-Wr841N Firmware 4.17.16Build120201Rel.54750N TP-Link TL-WR841N 8.0 4.17.16 Build 120201 Rel.54750n is vulnerable to Cross Site Scripting (XSS). | 6.1 |
| 2022-09-28 | CVE-2022-40486 | Code Injection vulnerability in Tp-Link Archer Ax10 V1 Firmware 1.3.1 TP Link Archer AX10 V1 Firmware Version 1.3.1 Build 20220401 Rel. | 8.8 |
| 2022-09-12 | CVE-2022-37860 | OS Command Injection vulnerability in Tp-Link M7350 Firmware 190531 The web configuration interface of the TP-Link M7350 V3 with firmware version 190531 is affected by a pre-authentication command injection vulnerability. | 9.8 |
| 2022-08-23 | CVE-2021-42232 | OS Command Injection vulnerability in Tp-Link Archer A7 Firmware 210519 TP-Link Archer A7 Archer A7(US)_V5_210519 is affected by a command injection vulnerability in /usr/bin/tddp. | 9.8 |
| 2022-07-28 | CVE-2022-34555 | Unspecified vulnerability in Tp-Link Tl-R473G Firmware 2.0.1 TP-LINK TL-R473G 2.0.1 Build 220529 Rel.65574n was discovered to contain a remote code execution vulnerability which is exploited via a crafted packet. | 9.8 |
| 2022-07-14 | CVE-2022-30024 | Classic Buffer Overflow vulnerability in Tp-Link products A buffer overflow in the httpd daemon on TP-Link TL-WR841N V12 (firmware version 3.16.9) devices allows an authenticated remote attacker to execute arbitrary code via a GET request to the page for the System Tools of the Wi-Fi network. | 8.8 |
| 2022-07-07 | CVE-2022-32058 | Infinite Loop vulnerability in Tp-Link Tl-Wr741N Firmware and Tl-Wr742N Firmware An infinite loop in the function httpRpmPass of TP-Link TL-WR741N/TL-WR742N V1/V2/V3_130415 allows attackers to cause a Denial of Service (DoS) via a crafted packet. | 7.5 |
| 2022-06-30 | CVE-2022-33087 | Out-of-bounds Write vulnerability in Tp-Link Archer A5 Firmware and Archer C50 Firmware A stack overflow in the function DM_ In fillobjbystr() of TP-Link Archer C50&A5(US)_V5_200407 allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request. | 7.5 |