Vulnerabilities > TP Link > TL Wpa4220 Firmware > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-06-15 CVE-2021-28858 Cleartext Storage of Sensitive Information vulnerability in Tp-Link Tl-Wpa4220 Firmware 4.0.2
TP-Link's TL-WPA4220 4.0.2 Build 20180308 Rel.37064 does not use SSL by default.
local
low complexity
tp-link CWE-312
5.5
2020-11-18 CVE-2020-28005 Classic Buffer Overflow vulnerability in Tp-Link Tl-Wpa4220 Firmware 4.0.2
httpd on TP-Link TL-WPA4220 devices (hardware versions 2 through 4) allows remote authenticated users to trigger a buffer overflow (causing a denial of service) by sending a POST request to the /admin/syslog endpoint.
network
low complexity
tp-link CWE-120
6.5