Tp-link

Tl-wr841n Firmware

33 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
10

CVE-2022-25073

Exploit
  • EPSS 3.35%
  • Published 24.02.2022 15:15:30
  • Last modified 21.11.2024 06:51:36

TL-WR841Nv14_US_0.9.1_4.18 routers were discovered to contain a stack overflow in the function dm_fillObjByStr(). This vulnerability allows unauthenticated attackers to execute arbitrary code.

9.8

CVE-2022-0162

  • EPSS 0.16%
  • Published 09.02.2022 23:15:16
  • Last modified 21.11.2024 06:38:02

The vulnerability exists in TP-Link TL-WR841N V11 3.16.9 Build 160325 Rel.62500n wireless router due to transmission of authentication information in cleartextbase64 format. Successful exploitation of this vulnerability could allow a remote attacker ...

9

CVE-2020-35576

  • EPSS 69.83%
  • Published 26.01.2021 18:15:54
  • Last modified 21.11.2024 05:27:37

A Command Injection issue in the traceroute feature on TP-Link TL-WR841N V13 (JP) with firmware versions prior to 201216 allows authenticated users to execute arbitrary code as root via shell metacharacters, a different vulnerability than CVE-2018-12...

9

CVE-2020-8423

Exploit
  • EPSS 30.17%
  • Published 02.04.2020 17:15:14
  • Last modified 21.11.2024 05:38:49

A buffer overflow in the httpd daemon on TP-Link TL-WR841N V10 (firmware version 3.16.9) devices allows an authenticated remote attacker to execute arbitrary code via a GET request to the page for the configuration of the Wi-Fi network.

9.3

CVE-2019-17147

  • EPSS 22%
  • Published 07.01.2020 23:15:10
  • Last modified 21.11.2024 04:31:47

This vulnerability allows remote attackers to execute arbitrary code on affected installations of TP-LINK TL-WR841N routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the web service, which listens ...

8.8

CVE-2018-12577

  • EPSS 3.45%
  • Published 02.07.2018 16:29:00
  • Last modified 21.11.2024 03:45:28

The Ping and Traceroute features on TP-Link TL-WR841N v13 00000001 0.9.1 4.16 v0001.0 Build 180119 Rel.65243n devices allow authenticated blind Command Injection.

4.3

CVE-2018-12576

  • EPSS 0.28%
  • Published 02.07.2018 16:29:00
  • Last modified 21.11.2024 03:45:27

TP-Link TL-WR841N v13 00000001 0.9.1 4.16 v0001.0 Build 180119 Rel.65243n devices allow clickjacking.

9.8

CVE-2018-12575

  • EPSS 0.76%
  • Published 02.07.2018 16:29:00
  • Last modified 21.11.2024 03:45:27

On TP-Link TL-WR841N v13 00000001 0.9.1 4.16 v0001.0 Build 171019 Rel.55346n devices, all actions in the web interface are affected by bypass of authentication via an HTTP request.

8.8

CVE-2018-12574

  • EPSS 0.14%
  • Published 02.07.2018 16:29:00
  • Last modified 21.11.2024 03:45:27

CSRF exists for all actions in the web interface on TP-Link TL-WR841N v13 00000001 0.9.1 4.16 v0001.0 Build 180119 Rel.65243n devices.

10

CVE-2018-11714

Exploit
  • EPSS 5.94%
  • Published 04.06.2018 14:29:00
  • Last modified 21.11.2024 03:43:52

An issue was discovered on TP-Link TL-WR840N v5 00000005 0.9.1 3.16 v0001.0 Build 170608 Rel.58696n and TL-WR841N v13 00000013 0.9.1 4.16 v0001.0 Build 170622 Rel.64334n devices. This issue is caused by improper session handling on the /cgi/ folder o...