CVE-2026-9105
- EPSS 0.28%
- Veröffentlicht 29.06.2026 16:16:44
- Zuletzt bearbeitet 01.07.2026 19:57:52
An authenticated stack-based buffer overflow vulnerability exists in the web management interface of TP-Link TL-WR841N v14. A remote authenticated attacker can send crafted HTTP requests to cause the embedded web server to overflow a stack buffer, r...
CVE-2026-5039
- EPSS 0.13%
- Veröffentlicht 23.04.2026 16:10:13
- Zuletzt bearbeitet 05.05.2026 14:11:58
TP-Link TL-WR841N v13 uses DES-CBC encryption in the TDDPv2 debug protocol with a cryptographic key derived from default web management credentials, making the key predictable if device is left in default configuration. A network-adjacent attacker ca...
CVE-2026-3622
- EPSS 0.36%
- Veröffentlicht 26.03.2026 20:34:36
- Zuletzt bearbeitet 31.03.2026 19:09:04
The vulnerability exists in the UPnP component of TL-WR841N v14, where improper input validation leads to an out-of-bounds read, potentially causing a crash of the UPnP service. Successful exploitation can cause the UPnP service to crash, resultin...
CVE-2026-3227
- EPSS 1.1%
- Veröffentlicht 13.03.2026 21:38:31
- Zuletzt bearbeitet 01.07.2026 18:16:32
A command injection vulnerability was identified in TP-Link TL-WR802N v4, TL-WR841N v14, and TL-WR840N v6 due to improper neutralization of special elements used in an OS command. In the router configuration import function allows an authenticated a...
CVE-2025-9014
- EPSS 0.43%
- Veröffentlicht 15.01.2026 17:36:06
- Zuletzt bearbeitet 30.01.2026 20:42:05
A Null Pointer Dereference vulnerability exists in the referer header check of the web portal of TP-Link TL-WR841N v14, caused by improper input validation. A remote, unauthenticated attacker can exploit this flaw and cause Denial of Service on the ...
CVE-2025-9377
- EPSS 11.75%
- Veröffentlicht 29.08.2025 17:30:33
- Zuletzt bearbeitet 03.11.2025 18:55:06
The authenticated remote command execution (RCE) vulnerability exists in the Parental Control page on TP-Link Archer C7(EU) V2 and TL-WR841N/ND(MS) V9. This issue affects Archer C7(EU) V2: before 241108 and TL-WR841N/ND(MS) V9: before 241108. Both...
CVE-2025-53715
- EPSS 0.31%
- Veröffentlicht 29.07.2025 17:58:32
- Zuletzt bearbeitet 01.08.2025 18:42:34
A vulnerability has been found in TP-Link TL-WR841N V11. The vulnerability exists in the /userRpm/Wan6to4TunnelCfgRpm.htm file due to missing input parameter validation, which may lead to the buffer overflow to cause a crash of the web service and re...
CVE-2025-53714
- EPSS 0.31%
- Veröffentlicht 29.07.2025 17:58:21
- Zuletzt bearbeitet 01.08.2025 18:42:39
A vulnerability has been found in TP-Link TL-WR841N V11. The vulnerability exists in the /userRpm/WzdWlanSiteSurveyRpm_AP.htm file due to missing input parameter validation, which may lead to the buffer overflow to cause a crash of the web service an...
CVE-2025-53713
- EPSS 0.31%
- Veröffentlicht 29.07.2025 17:58:03
- Zuletzt bearbeitet 01.08.2025 18:43:02
A vulnerability has been found in TP-Link TL-WR841N V11. The vulnerability exists in the /userRpm/WlanNetworkRpm_APC.htm file due to missing input parameter validation, which may lead to the buffer overflow to cause a crash of the web service and res...
CVE-2025-53712
- EPSS 0.31%
- Veröffentlicht 29.07.2025 17:57:50
- Zuletzt bearbeitet 01.08.2025 18:43:06
A vulnerability has been found in TP-Link TL-WR841N V11. The vulnerability exists in the /userRpm/WlanNetworkRpm_AP.htm file due to missing input parameter validation, which may lead to the buffer overflow to cause a crash of the web service and resu...