Lucene search

Tl-wpa4220 Firmware Security Vulnerabilities

cve

CVE-2021-28858

TP-Link's TL-WPA4220 4.0.2 Build 20180308 Rel.37064 does not use SSL by default. Attacker on the local network can monitor traffic and capture the cookie and other sensitive...

5.5CVSS

5.5AI Score

0.0005EPSS

2021-06-15 10:15 PM

cve

CVE-2021-28857

TP-Link's TL-WPA4220 4.0.2 Build 20180308 Rel.37064 username and password are sent via the...

7.5CVSS

7.6AI Score

0.003EPSS

2021-06-15 10:15 PM

cve

CVE-2020-28005

httpd on TP-Link TL-WPA4220 devices (hardware versions 2 through 4) allows remote authenticated users to trigger a buffer overflow (causing a denial of service) by sending a POST request to the /admin/syslog endpoint. Fixed version:...

6.5CVSS

6.5AI Score

0.001EPSS

2020-11-18 04:15 PM

cve

CVE-2020-24297

httpd on TP-Link TL-WPA4220 devices (versions 2 through 4) allows remote authenticated users to execute arbitrary OS commands by sending crafted POST requests to the endpoint /admin/powerline. Fixed version:...

8.8CVSS

8.7AI Score

0.007EPSS

2020-11-18 04:15 PM