CVE-2022-46430

Published: Dic 20, 2022 Last Modified: Apr 16, 2025 EU-VD ID: EUVD-2022-49235 Aliases: GSD-2022-46430

ExploitDB:

Other exploit source:

Google Dorks:

MEDIUM 4,8

Source: [email protected]

Attack Vector: network

Attack Complexity: high

Privileges Required: low

User Interaction: required

Scope: unchanged

Confidentiality: none

Integrity: none

Availability: high

Description

AI Translation Available

TP-Link TL-WR740N V1 and V2 v3.12.4 and earlier allows authenticated attackers to execute arbitrary code or cause a Denial of Service (DoS) via uploading a crafted firmware image during the firmware update process.

EPSS (Exploit Prediction Scoring System)

Trend Analysis

EPSS (Exploit Prediction Scoring System)

Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.

EPSS Score

0,0018

Percentile

0,4th

Updated

EPSS Score Trend (Last 90 Days)

494

Download of Code Without Integrity Check

Draft

Abstraction: Base Structure: Simple

Common Consequences

Security Scopes Affected:

Integrity Availability Confidentiality Other

Potential Impacts:

Execute Unauthorized Code Or Commands Alter Execution Logic Other

Applicable Platforms

All platforms may be affected

Likelihood of Exploit: Medium

View CWE Details

Operating System

Tl-Wr740N V2 Firmware by Tp-Link

Product Information

Vendor Tp-Link

Product Tl-Wr740N V2 Firmware

Version Range Affected

To 3.12.4 (inclusive)

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:tp-link:tl-wr740n_v2_firmware:*:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Tl-Wr740N V1 Firmware by Tp-Link

Product Information

Vendor Tp-Link

Product Tl-Wr740N V1 Firmware

Version Range Affected

To 3.12.4 (inclusive)

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:tp-link:tl-wr740n_v1_firmware:*:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Tl-Wr741Nd V1 Firmware by Tp-Link

Product Information

Vendor Tp-Link

Product Tl-Wr741Nd V1 Firmware

Version Range Affected

To 3.12.4 (inclusive)

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:tp-link:tl-wr741nd_v1_firmware:*:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Tl-Wr741Nd V2 Firmware by Tp-Link

Product Information

Vendor Tp-Link

Product Tl-Wr741Nd V2 Firmware

Version Range Affected

To 3.12.4 (inclusive)

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:tp-link:tl-wr741nd_v2_firmware:*:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

https://hackmd.io/%40slASVrz_SrW7NQCsunofeA/BJxlw2Pwi

https://www.tp-link.com/us/press/security-advisory/

Vendor Advisory

https://www.tp-link.com/us/press/security-advisory/

https://hackmd.io/%40slASVrz_SrW7NQCsunofeA/BJxlw2Pwi

https://www.tp-link.com/us/press/security-advisory/

Vendor Advisory

https://www.tp-link.com/us/press/security-advisory/

CVE-2022-46430

Description

EPSS (Exploit Prediction Scoring System)

EPSS (Exploit Prediction Scoring System)

EPSS Score Trend (Last 90 Days)

Download of Code Without Integrity Check

Common Consequences

Applicable Platforms

Tl-Wr740N V2 Firmware by Tp-Link

Product Information

Tl-Wr740N V1 Firmware by Tp-Link

Product Information

Tl-Wr741Nd V1 Firmware by Tp-Link

Product Information

Tl-Wr741Nd V2 Firmware by Tp-Link

Product Information

Iscriviti alla newsletter