Skip to main content

Tl Wr840N Firmware

16 CVEs product

Monthly

CVE-2022-29402 MEDIUM POC This Month

TP-Link TL-WR840N EU v6.20 was discovered to contain insecure protections for its UART console. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass TP-Link Tl Wr840N Firmware
NVD
CVSS 3.1
6.8
EPSS
0.4%
CVE-2022-26642 HIGH POC This Week

TP-LINK TL-WR840N(ES)_V6.20 was discovered to contain a buffer overflow via the X_TP_ClonedMACAddress parameter. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

TP-Link Buffer Overflow Tl Wr840N Firmware
NVD GitHub
CVSS 3.1
7.2
EPSS
1.2%
CVE-2022-26641 HIGH POC This Week

TP-LINK TL-WR840N(ES)_V6.20 was discovered to contain a buffer overflow via the httpRemotePort parameter. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

TP-Link Buffer Overflow Tl Wr840N Firmware
NVD GitHub
CVSS 3.1
7.2
EPSS
1.2%
CVE-2022-26640 HIGH POC This Week

TP-LINK TL-WR840N(ES)_V6.20 was discovered to contain a buffer overflow via the minAddress parameter. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

TP-Link Buffer Overflow Tl Wr840N Firmware
NVD GitHub
CVSS 3.1
7.2
EPSS
1.2%
CVE-2022-26639 HIGH POC This Week

TP-LINK TL-WR840N(ES)_V6.20 was discovered to contain a buffer overflow via the DNSServers parameter. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

TP-Link Buffer Overflow Tl Wr840N Firmware
NVD GitHub
CVSS 3.1
7.2
EPSS
1.2%
CVE-2022-25064 CRITICAL POC THREAT Emergency

TP-LINK TL-WR840N(ES)_V6.20_180709 was discovered to contain a remote code execution (RCE) vulnerability via the function oal_wan6_setIpAddr. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 39.8%.

Command Injection TP-Link RCE Tl Wr840N Firmware
NVD VulDB
CVSS 3.1
9.8
EPSS
39.8%
Threat
4.7
CVE-2022-25062 HIGH This Week

TP-LINK TL-WR840N(ES)_V6.20_180709 was discovered to contain an integer overflow via the function dm_checkString. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

TP-Link Integer Overflow Denial Of Service Tl Wr840N Firmware
NVD VulDB
CVSS 3.1
7.5
EPSS
4.5%
CVE-2022-25061 CRITICAL POC THREAT Emergency

TP-LINK TL-WR840N(ES)_V6.20_180709 was discovered to contain a command injection vulnerability via the component oal_setIp6DefaultRoute. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 72.5%.

TP-Link Command Injection Tl Wr840N Firmware
NVD VulDB
CVSS 3.1
9.8
EPSS
72.5%
Threat
5.6
CVE-2022-25060 CRITICAL POC THREAT Emergency

TP-LINK TL-WR840N(ES)_V6.20_180709 was discovered to contain a command injection vulnerability via the component oal_startPing. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 52.4%.

Command Injection TP-Link Tl Wr840N Firmware
NVD VulDB
CVSS 3.1
9.8
EPSS
52.4%
Threat
5.0
CVE-2021-41653 CRITICAL POC THREAT Emergency

The PING function on the TP-Link TL-WR840N EU v5 router with firmware through TL-WR840N(EU)_V5_171211 is vulnerable to remote code execution via a crafted payload in an IP address input field. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 77.5%.

Code Injection TP-Link RCE Tl Wr840N Firmware
NVD VulDB
CVSS 3.1
9.8
EPSS
77.5%
Threat
5.8
CVE-2021-29280 MEDIUM POC This Month

In TP-Link Wireless N Router WR840N an ARP poisoning attack can cause buffer overflow. Rated medium severity (CVSS 6.4). Public exploit code available and no vendor patch available.

TP-Link Buffer Overflow Information Disclosure Tl Wr840N Firmware
NVD GitHub
CVSS 3.1
6.4
EPSS
0.8%
CVE-2019-15060 HIGH POC This Week

The traceroute function on the TP-Link TL-WR840N v4 router with firmware through 0.9.1 3.16 is vulnerable to remote code execution via a crafted payload in an IP address input field. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

TP-Link RCE Command Injection Tl Wr840N Firmware
NVD
CVSS 3.0
8.8
EPSS
4.0%
CVE-2019-12195 MEDIUM POC This Month

TP-Link TL-WR840N v5 00000005 devices allow XSS via the network name. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

TP-Link XSS Tl Wr840N Firmware
NVD Exploit-DB
CVSS 3.0
4.8
EPSS
1.8%
CVE-2018-15172 HIGH POC This Week

TP-Link WR840N devices have a buffer overflow via a long Authorization HTTP header. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow TP-Link Tl Wr840N Firmware
NVD Exploit-DB
CVSS 3.0
7.5
EPSS
8.3%
CVE-2018-11714 CRITICAL POC THREAT Act Now

An issue was discovered on TP-Link TL-WR840N v5 00000005 0.9.1 3.16 v0001.0 Build 170608 Rel.58696n and TL-WR841N v13 00000013 0.9.1 4.16 v0001.0 Build 170622 Rel.64334n devices. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Session Fixation Information Disclosure TP-Link Tl Wr840N Firmware Tl Wr841n Firmware
NVD Exploit-DB
CVSS 3.0
9.8
EPSS
36.5%
CVE-2014-9510 MEDIUM PATCH This Month

Cross-site request forgery (CSRF) vulnerability in the administration console in TP-Link TL-WR840N (V1) router with firmware before 3.13.27 build 141120 allows remote attackers to hijack the. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable.

CSRF TP-Link Tl Wr840N Firmware
NVD
CVSS 2.0
6.8
EPSS
0.1%
EPSS 0% CVSS 6.8
MEDIUM POC This Month

TP-Link TL-WR840N EU v6.20 was discovered to contain insecure protections for its UART console. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass TP-Link Tl Wr840N Firmware
NVD
EPSS 1% CVSS 7.2
HIGH POC This Week

TP-LINK TL-WR840N(ES)_V6.20 was discovered to contain a buffer overflow via the X_TP_ClonedMACAddress parameter. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

TP-Link Buffer Overflow Tl Wr840N Firmware
NVD GitHub
EPSS 1% CVSS 7.2
HIGH POC This Week

TP-LINK TL-WR840N(ES)_V6.20 was discovered to contain a buffer overflow via the httpRemotePort parameter. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

TP-Link Buffer Overflow Tl Wr840N Firmware
NVD GitHub
EPSS 1% CVSS 7.2
HIGH POC This Week

TP-LINK TL-WR840N(ES)_V6.20 was discovered to contain a buffer overflow via the minAddress parameter. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

TP-Link Buffer Overflow Tl Wr840N Firmware
NVD GitHub
EPSS 1% CVSS 7.2
HIGH POC This Week

TP-LINK TL-WR840N(ES)_V6.20 was discovered to contain a buffer overflow via the DNSServers parameter. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

TP-Link Buffer Overflow Tl Wr840N Firmware
NVD GitHub
EPSS 40% 4.7 CVSS 9.8
CRITICAL POC THREAT Emergency

TP-LINK TL-WR840N(ES)_V6.20_180709 was discovered to contain a remote code execution (RCE) vulnerability via the function oal_wan6_setIpAddr. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 39.8%.

Command Injection TP-Link RCE +1
NVD VulDB
EPSS 4% CVSS 7.5
HIGH This Week

TP-LINK TL-WR840N(ES)_V6.20_180709 was discovered to contain an integer overflow via the function dm_checkString. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

TP-Link Integer Overflow Denial Of Service +1
NVD VulDB
EPSS 72% 5.6 CVSS 9.8
CRITICAL POC THREAT Emergency

TP-LINK TL-WR840N(ES)_V6.20_180709 was discovered to contain a command injection vulnerability via the component oal_setIp6DefaultRoute. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 72.5%.

TP-Link Command Injection Tl Wr840N Firmware
NVD VulDB
EPSS 52% 5.0 CVSS 9.8
CRITICAL POC THREAT Emergency

TP-LINK TL-WR840N(ES)_V6.20_180709 was discovered to contain a command injection vulnerability via the component oal_startPing. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 52.4%.

Command Injection TP-Link Tl Wr840N Firmware
NVD VulDB
EPSS 77% 5.8 CVSS 9.8
CRITICAL POC THREAT Emergency

The PING function on the TP-Link TL-WR840N EU v5 router with firmware through TL-WR840N(EU)_V5_171211 is vulnerable to remote code execution via a crafted payload in an IP address input field. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 77.5%.

Code Injection TP-Link RCE +1
NVD VulDB
EPSS 1% CVSS 6.4
MEDIUM POC This Month

In TP-Link Wireless N Router WR840N an ARP poisoning attack can cause buffer overflow. Rated medium severity (CVSS 6.4). Public exploit code available and no vendor patch available.

TP-Link Buffer Overflow Information Disclosure +1
NVD GitHub
EPSS 4% CVSS 8.8
HIGH POC This Week

The traceroute function on the TP-Link TL-WR840N v4 router with firmware through 0.9.1 3.16 is vulnerable to remote code execution via a crafted payload in an IP address input field. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

TP-Link RCE Command Injection +1
NVD
EPSS 2% CVSS 4.8
MEDIUM POC This Month

TP-Link TL-WR840N v5 00000005 devices allow XSS via the network name. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

TP-Link XSS Tl Wr840N Firmware
NVD Exploit-DB
EPSS 8% CVSS 7.5
HIGH POC This Week

TP-Link WR840N devices have a buffer overflow via a long Authorization HTTP header. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow TP-Link Tl Wr840N Firmware
NVD Exploit-DB
EPSS 37% CVSS 9.8
CRITICAL POC THREAT Act Now

An issue was discovered on TP-Link TL-WR840N v5 00000005 0.9.1 3.16 v0001.0 Build 170608 Rel.58696n and TL-WR841N v13 00000013 0.9.1 4.16 v0001.0 Build 170622 Rel.64334n devices. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Session Fixation Information Disclosure TP-Link +2
NVD Exploit-DB
EPSS 0% CVSS 6.8
MEDIUM PATCH This Month

Cross-site request forgery (CSRF) vulnerability in the administration console in TP-Link TL-WR840N (V1) router with firmware before 3.13.27 build 141120 allows remote attackers to hijack the. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable.

CSRF TP-Link Tl Wr840N Firmware
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy