Vulnerabilities > TP Link > TL Wr840N Firmware > 6.20.180709

DATE CVE VULNERABILITY TITLE RISK
2022-02-25 CVE-2022-25060 OS Command Injection vulnerability in Tp-Link Tl-Wr840N Firmware 6.20180709
TP-LINK TL-WR840N(ES)_V6.20_180709 was discovered to contain a command injection vulnerability via the component oal_startPing.
network
low complexity
tp-link CWE-78
critical
 9.8
9.8
2022-02-25 CVE-2022-25061 OS Command Injection vulnerability in Tp-Link Tl-Wr840N Firmware 6.20180709
TP-LINK TL-WR840N(ES)_V6.20_180709 was discovered to contain a command injection vulnerability via the component oal_setIp6DefaultRoute.
network
low complexity
tp-link CWE-78
critical
 9.8
9.8
2022-02-25 CVE-2022-25062 Integer Overflow or Wraparound vulnerability in Tp-Link Tl-Wr840N Firmware 6.20180709
TP-LINK TL-WR840N(ES)_V6.20_180709 was discovered to contain an integer overflow via the function dm_checkString.
network
low complexity
tp-link CWE-190
7.5
7.5
2022-02-25 CVE-2022-25064 OS Command Injection vulnerability in Tp-Link Tl-Wr840N Firmware 6.20180709
TP-LINK TL-WR840N(ES)_V6.20_180709 was discovered to contain a remote code execution (RCE) vulnerability via the function oal_wan6_setIpAddr.
network
low complexity
tp-link CWE-78
critical
 9.8
9.8
2021-11-13 CVE-2021-41653 Code Injection vulnerability in Tp-Link Tl-Wr840N Firmware
The PING function on the TP-Link TL-WR840N EU v5 router with firmware through TL-WR840N(EU)_V5_171211 is vulnerable to remote code execution via a crafted payload in an IP address input field.
network
low complexity
tp-link CWE-94
critical
 9.8
9.8