Vulnerabilities > TP Link > TL R600Vpn Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2018-12-01 CVE-2018-3951 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tp-Link Tl-R600Vpn Firmware
An exploitable remote code execution vulnerability exists in the HTTP header-parsing function of the TP-Link TL-R600VPN HTTP Server.
network
low complexity
tp-link CWE-119
7.2
2018-12-01 CVE-2018-3950 Out-of-bounds Write vulnerability in Tp-Link Tl-R600Vpn Firmware 1.2.3/1.3.0
An exploitable remote code execution vulnerability exists in the ping and tracert functionality of the TP-Link TL-R600VPN HWv3 FRNv1.3.0 and HWv2 FRNv1.2.3 http server.
network
low complexity
tp-link CWE-787
8.8
2018-12-01 CVE-2018-3949 Path Traversal vulnerability in Tp-Link Tl-R600Vpn Firmware 1.2.3/1.3.0
An exploitable information disclosure vulnerability exists in the HTTP server functionality of the TP-Link TL-R600VPN.
network
low complexity
tp-link CWE-22
7.5
2018-11-30 CVE-2018-3948 Improper Input Validation vulnerability in Tp-Link Tl-R600Vpn Firmware 1.2.3/1.3.0
An exploitable denial-of-service vulnerability exists in the URI-parsing functionality of the TP-Link TL-R600VPN HTTP server.
network
low complexity
tp-link CWE-20
7.5