CVE-2022-46435
HIGH
8,8
Source: [email protected]
Attack Vector: network
Attack Complexity: low
Privileges Required: none
User Interaction: required
Scope: unchanged
Confidentiality: high
Integrity: high
Availability: high
Description
AI Translation Available
An issue in the firmware update process of TP-Link TL-WR941ND V2/V3 up to 3.13.9 and TL-WR941ND V4 up to 3.12.8 allows attackers to execute arbitrary code or cause a Denial of Service (DoS) via uploading a crafted firmware image.
EPSS (Exploit Prediction Scoring System)
Trend Analysis
EPSS (Exploit Prediction Scoring System)
Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.
EPSS Score
0,0057
Percentile
0,7th
Updated
EPSS Score Trend (Last 90 Days)
Operating System
Tl-Wr941Nd V3 Firmware by Tp-Link
Version Range Affected
To
3.13.9
(inclusive)
CPE Identifier
View Detailed Analysis
cpe:2.3:o:tp-link:tl-wr941nd_v3_firmware:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Tl-Wr941Nd V4 Firmware by Tp-Link
Version Range Affected
To
3.12.8
(inclusive)
CPE Identifier
View Detailed Analysis
cpe:2.3:o:tp-link:tl-wr941nd_v4_firmware:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Tl-Wr941Nd V2 Firmware by Tp-Link
Version Range Affected
To
3.13.9
(inclusive)
CPE Identifier
View Detailed Analysis
cpe:2.3:o:tp-link:tl-wr941nd_v2_firmware:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
https://hackmd.io/%40slASVrz_SrW7NQCsunofeA/SyvnlO9Pi
https://www.tp-link.com/us/press/security-advisory/
https://hackmd.io/%40slASVrz_SrW7NQCsunofeA/SyvnlO9Pi
https://www.tp-link.com/us/press/security-advisory/