CVE-2026-11409
- EPSS 2.79%
- Veröffentlicht 16.06.2026 21:03:47
- Zuletzt bearbeitet 16.06.2026 21:03:47
An authenticated OS command injection vulnerability exists in the IPv6 PPPoE configuration handler in TL-WR940N v6 due to improper sanitization of user input. An attacker with administrative access may exploit this issue to execute arbitrary system c...
CVE-2025-6151
- EPSS 3.07%
- Veröffentlicht 17.06.2025 01:15:23
- Zuletzt bearbeitet 15.07.2025 19:15:23
A vulnerability has been found in TP-Link TL-WR940N V4 and TL-WR841N V11. Affected by this issue is some unknown functionality of the file /userRpm/WanSlaacCfgRpm.htm, which may lead to buffer overflow. The attack may be launched remotely. This vu...
- EPSS 5.37%
- Veröffentlicht 09.01.2025 20:15:39
- Zuletzt bearbeitet 05.07.2026 01:21:09
TP-Link TL-WR940N V3 and V4 with firmware 3.16.9 and earlier contain a buffer overflow via the dnsserver1 and dnsserver2 parameters at /userRpm/Wan6to4TunnelCfgRpm.htm. This vulnerability allows an authenticated attacker to execute arbitrary code on ...