The vulnerability of the httpd daemon in the microprogramming software of TP-Link’s TL-WR940N router allows a hacker to execute arbitrary code.

🗓️ 01 Mar 2022 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

bdu_fstec

bdu_fstec🔗 bdu.fstec.ru👁 8 Views

The TP-Link TL-WR940N router's httpd daemon has a buffer overflow enabling arbitrary code execution.

Reporter	Title	Published	Views	Family All 11
Circl	CVE-2022-24973	28 Mar 202322:40	–	circl
CNNVD	TP-Link TL-WR940N 安全漏洞	22 Feb 202200:00	–	cnnvd
CVE	CVE-2022-24973	28 Mar 202300:00	–	cve
Cvelist	CVE-2022-24973	28 Mar 202300:00	–	cvelist
EUVD	EUVD-2022-29723	3 Oct 202520:07	–	euvd
NVD	CVE-2022-24973	28 Mar 202319:15	–	nvd
Prion	Stack overflow	28 Mar 202319:15	–	prion
Positive Technologies	PT-2021-6151 · Tp Link · Tp-Link Tl-Wr940N	21 Oct 202100:00	–	ptsecurity
RedhatCVE	CVE-2022-24973	22 May 202522:31	–	redhatcve
Vulnrichment	CVE-2022-24973	28 Mar 202300:00	–	vulnrichment

Vulners

Node

tp-link_technologies_co tl-wr940nRange<211111

Source	Link
vulmon	www.vulmon.com/vulnerabilitydetails
zerodayinitiative	www.zerodayinitiative.com/advisories/ZDI-22-406/
tp-link	www.tp-link.com/ru/home-networking/wifi-router/tl-wr940n/
web	www.web.nvd.nist.gov/view/vuln/detail
zerodayinitiative	www.zerodayinitiative.com/advisories/ZDI-22-406/
zerodayinitiative	www.zerodayinitiative.com/advisories/ZDI-CAN-13992/

01 Mar 2022 00:00Current

7.2High risk

Vulners AI Score7.2

CVSS 36.8

CVSS 27.4

EPSS0.00718

tp link tl wr940n buffer overflow arbitrary code execution http daemon