Vulnerabilities > TP Link > Medium

DATE CVE VULNERABILITY TITLE RISK
2019-01-18 CVE-2019-6487 OS Command Injection vulnerability in Tp-Link products
TP-Link WDR Series devices through firmware v3 (such as TL-WDR5620 V3.0) are affected by command injection (after login) leading to remote code execution, because shell metacharacters can be included in the weather get_weather_observe citycode field.
network
low complexity
tp-link CWE-78
6.5
6.5
2018-10-19 CVE-2018-18428 Information Exposure vulnerability in Tp-Link Tl-Sc3130 Firmware 1.6.18P12121101
TP-Link TL-SC3130 1.6.18P12_121101 devices allow unauthenticated RTSP stream access, as demonstrated by a /jpg/image.jpg URI.
network
low complexity
tp-link CWE-200
5.0
5.0
2018-10-01 CVE-2018-15702 Cross-Site Request Forgery (CSRF) vulnerability in Tp-Link Tl-Wrn841N Firmware 0.9.14.16V0348.0
The web interface in TP-Link TL-WRN841N 0.9.1 4.16 v0348.0 is vulnerable to CSRF due to insufficient validation of the referer field.
network
tp-link CWE-352
6.8
6.8
2018-10-01 CVE-2018-15700 Improper Input Validation vulnerability in Tp-Link Tl-Wrn841N Firmware 0.9.14.16V0348.0
The web interface in TP-Link TL-WRN841N 0.9.1 4.16 v0348.0 is vulnerable to a denial of service when an unauthenticated LAN user sends a crafted HTTP header containing an unexpected Referer field.
low complexity
tp-link CWE-20
6.1
6.1
2018-09-13 CVE-2018-17018 Unspecified vulnerability in Tp-Link Tl-Wr886N Firmware 6.02.3.4/7.01.1.0
An issue was discovered on TP-Link TL-WR886N 6.0 2.3.4 and TL-WR886N 7.0 1.1.0 devices.
network
low complexity
tp-link
4.0
4.0
2018-09-13 CVE-2018-17017 Unspecified vulnerability in Tp-Link Tl-Wr886N Firmware 6.02.3.4/7.01.1.0
An issue was discovered on TP-Link TL-WR886N 6.0 2.3.4 and TL-WR886N 7.0 1.1.0 devices.
network
low complexity
tp-link
4.0
4.0
2018-09-13 CVE-2018-17016 Unspecified vulnerability in Tp-Link Tl-Wr886N Firmware 6.02.3.4/7.01.1.0
An issue was discovered on TP-Link TL-WR886N 6.0 2.3.4 and TL-WR886N 7.0 1.1.0 devices.
network
low complexity
tp-link
4.0
4.0
2018-09-13 CVE-2018-17015 Unspecified vulnerability in Tp-Link Tl-Wr886N Firmware 6.02.3.4/7.01.1.0
An issue was discovered on TP-Link TL-WR886N 6.0 2.3.4 and TL-WR886N 7.0 1.1.0 devices.
network
low complexity
tp-link
4.0
4.0
2018-09-13 CVE-2018-17014 Unspecified vulnerability in Tp-Link Tl-Wr886N Firmware 6.02.3.4/7.01.1.0
An issue was discovered on TP-Link TL-WR886N 6.0 2.3.4 and TL-WR886N 7.0 1.1.0 devices.
network
low complexity
tp-link
4.0
4.0
2018-09-13 CVE-2018-17013 Unspecified vulnerability in Tp-Link Tl-Wr886N Firmware 6.02.3.4/7.01.1.0
An issue was discovered on TP-Link TL-WR886N 6.0 2.3.4 and TL-WR886N 7.0 1.1.0 devices.
network
low complexity
tp-link
4.0
4.0