CVE-2020-24363

2020-08-31T16:15:00
ID CVE-2020-24363
Type cve
Reporter cve@mitre.org
Modified 2020-09-08T17:41:00

Description

TP-Link TL-WA855RE V5 20200415-rel37464 devices allow an unauthenticated attacker (on the same network) to submit a TDDP_RESET POST request for a factory reset and reboot. The attacker can then obtain incorrect access control by setting a new administrative password.