Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 10:43 p.m.14 views

CVE-2022-4499

TP-Link routers, Archer C5 and WR710N-V1, using the latest software, the strcmp function used for checking credentials in httpd, is susceptible to a side-channel attack. By measuring the response time of the httpd process, an attacker could guess each byte of the username and password...

7.5CVSS6.9AI score0.00709EPSS
Exploits0References1
CERT
CERT
added 2023/01/17 12:0 a.m.36 views

Vulnerabilities in TP-Link routers, WR710N-V1-151022 and Archer C5 V2

Overview TP-Link router WR710N-V1-151022 running firmware published 2015-10-22 and Archer-C5-V2-160201 running firmware published 2016-02-01 are susceptible to two vulnerabilities: 1. A buffer overflow during HTTP Basic Authentication allowing a remote attacker to corrupt memory allocated on a he...

9.8CVSS9.3AI score0.01781EPSS
Exploits0
CVE
CVE
added 2023/01/11 6:48 p.m.72 views

CVE-2022-4499

CVE-2022-4499 affects TP-Link WR710N-V1-151022 and Archer C5-V2-160201 (TP-Link routers). The vulnerability arises from a side-channel attack on the httpd process, specifically a strcmp() used to verify credentials, allowing an attacker to deterministically guess each byte of the username and pas...

7.5CVSS7.5AI score0.00709EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/01/11 6:48 p.m.44 views

CVE-2022-4499 The strcmp function in TP-Link routers, Archer C5 and WR710N-V1, used for checking credentials in httpd, is susceptible to a side-channel attack.

TP-Link routers, Archer C5 and WR710N-V1, using the latest software, the strcmp function used for checking credentials in httpd, is susceptible to a side-channel attack. By measuring the response time of the httpd process, an attacker could guess each byte of the username and password...

8.2AI score0.00709EPSS
Exploits0References1
Rows per page
Query Builder