2 matches found
TP-Link warns of botnet infecting routers and targeting Microsoft 365 accounts
TP-Link has issued a warning about a botnet exploiting two vulnerabilities to infect small office/home SOHO routers, which are then weaponized to attack Microsoft 365 accounts. The vulnerabilities affect the Archer C7 and TL-WR841N/ND routers, though other models may also be at risk. Despite the...
CVE-2025-9377
CVE-2025-9377 is an OS command injection (authenticated RCE) vulnerability on TP-Link Archer C7(EU) V2 and TL-WR841N/ND(MS) V9 in the Parental Control page, affecting versions before 241108. The issues are tied to end-of-life devices; TP-Link released patches and recommended upgrading where possi...