CVE-2022-46435

2022-12-2000:00:00

mitre

www.cve.org

tp-link tl-wr941nd

firmware update

arbitrary code execution

dos

AI Score

Confidence

High

EPSS

0.002

Percentile

60.1%

JSON

An issue in the firmware update process of TP-Link TL-WR941ND V2/V3 up to 3.13.9 and TL-WR941ND V4 up to 3.12.8 allows attackers to execute arbitrary code or cause a Denial of Service (DoS) via uploading a crafted firmware image.

References

hackmd.io/%40slASVrz_SrW7NQCsunofeA/SyvnlO9Pi

www.tp-link.com/us/press/security-advisory/