Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Ax10 Firmware Security Vulnerabilities

cve
cve

CVE-2022-41540

The web app client of TP-Link AX10v1 V1_211117 uses hard-coded cryptographic keys when communicating with the router. Attackers who are able to intercept the communications between the web client and router through a man-in-the-middle attack can then obtain the sequence key via a brute-force attack...

5.9CVSS

5.6AI Score

0.001EPSS

2022-10-18 03:15 PM
30
4
cve
cve

CVE-2022-41541

TP-Link AX10v1 V1_211117 allows attackers to execute a replay attack by using a previously transmitted encrypted authentication message and valid authentication token. Attackers are able to login to the web application as an admin user.

8.1CVSS

8.2AI Score

0.001EPSS

2022-10-18 03:15 PM
29
7