Vulnerabilities > TP Link > High

DATE CVE VULNERABILITY TITLE RISK
2022-04-18 CVE-2021-46122 Classic Buffer Overflow vulnerability in Tp-Link Tl-Wr840N Firmware 0.9.14.17V0001.0
Tp-Link TL-WR840N (EU) v6.20 Firmware (0.9.1 4.17 v0001.0 Build 201124 Rel.64328n) is vulnerable to Buffer Overflow via the Password reset feature.
network
low complexity
tp-link CWE-120
7.2
7.2
2022-03-28 CVE-2022-26639 Classic Buffer Overflow vulnerability in Tp-Link Tl-Wr840N Firmware 0.9.1.4.16
TP-LINK TL-WR840N(ES)_V6.20 was discovered to contain a buffer overflow via the DNSServers parameter.
network
low complexity
tp-link CWE-120
7.2
7.2
2022-03-28 CVE-2022-26640 Classic Buffer Overflow vulnerability in Tp-Link Tl-Wr840N Firmware 0.9.1.4.16
TP-LINK TL-WR840N(ES)_V6.20 was discovered to contain a buffer overflow via the minAddress parameter.
network
low complexity
tp-link CWE-120
7.2
7.2
2022-03-28 CVE-2022-26641 Classic Buffer Overflow vulnerability in Tp-Link Tl-Wr840N Firmware 0.9.1.4.16
TP-LINK TL-WR840N(ES)_V6.20 was discovered to contain a buffer overflow via the httpRemotePort parameter.
network
low complexity
tp-link CWE-120
7.2
7.2
2022-03-28 CVE-2022-26642 Classic Buffer Overflow vulnerability in Tp-Link Tl-Wr840N Firmware 0.9.1.4.16
TP-LINK TL-WR840N(ES)_V6.20 was discovered to contain a buffer overflow via the X_TP_ClonedMACAddress parameter.
network
low complexity
tp-link CWE-120
7.2
7.2
2022-03-10 CVE-2021-44032 Unspecified vulnerability in Tp-Link Omada Software Controller
TP-Link Omada SDN Software Controller before 5.0.15 does not check if the authentication method specified in a connection request is allowed.
network
low complexity
tp-link
7.5
7.5
2022-03-04 CVE-2021-44827 OS Command Injection vulnerability in Tp-Link Archer C20I Firmware
There is remote authenticated OS command injection on TP-Link Archer C20i 0.9.1 3.2 v003a.0 Build 170221 Rel.55462n devices vie the X_TP_ExternalIPv6Address HTTP parameter, allowing a remote attacker to run arbitrary commands on the router with root privileges.
network
low complexity
tp-link CWE-78
8.8
8.8
2022-02-25 CVE-2022-25062 Integer Overflow or Wraparound vulnerability in Tp-Link Tl-Wr840N Firmware 6.20180709
TP-LINK TL-WR840N(ES)_V6.20_180709 was discovered to contain an integer overflow via the function dm_checkString.
network
low complexity
tp-link CWE-190
7.5
7.5
2022-02-18 CVE-2022-24354 Integer Overflow or Wraparound vulnerability in Tp-Link Ac1750 Firmware 190726/201029/201030
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of TP-Link AC1750 prior to 1.1.4 Build 20211022 rel.59103(5553) routers.
low complexity
tp-link CWE-190
8.8
8.8
2022-02-18 CVE-2022-24355 Out-of-bounds Write vulnerability in Tp-Link Tl-Wr940N Firmware 3.20.1/62111113.20.1/63.19.1
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of TP-Link TL-WR940N 3.20.1 Build 200316 Rel.34392n (5553) routers.
low complexity
tp-link CWE-787
8.8
8.8