EUVD-2025-4140

Malicious code in bioql PyPI...

The vulnerability of the httpGetEnv() function (/userRpm/WanSlaacCfgRpm.htm) in the TP-Link TL-WR841ND router’s software allows a hacker to cause a service failure.

The vulnerability of the httpGetEnv function /userRpm/WanSlaacCfgRpm.htm in the TP-Link TL-WR841ND router’s software is related to buffer overflows caused by improper cleaning or release of resources when processing the dnsserver1 and dnsserver2 parameters. Exploiting this vulnerability allows an...

CVE-2025-25901

A buffer overflow vulnerability was discovered in TP-Link TL-WR841ND V11, triggered by the dnsserver1 and dnsserver2 parameters at /userRpm/WanSlaacCfgRpm.htm. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted packet...

CVE-2024-54887

TP-Link TL-WR940N V3 and V4 with firmware 3.16.9 and earlier contain a buffer overflow via the dnsserver1 and dnsserver2 parameters at /userRpm/Wan6to4TunnelCfgRpm.htm. This vulnerability allows an authenticated attacker to execute arbitrary code on the remote device in the context of the root us...