Lucene search
K

15 matches found

CISA
CISA
added 2025/09/02 12:0 p.m.6 views

CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities KEV Catalog, based on evidence of active exploitation. CVE-2020-24363link is external TP-link TL-WA855RE Missing Authentication for Critical Function Vulnerability CVE-2025-55177link is external Meta Platforms WhatsApp...

8.8CVSS7.1AI score0.20689EPSS
In wildExploits1References7
VulnCheck KEV
VulnCheck KEV
added 2025/09/02 12:0 a.m.3 views

VulnCheck KEV: CVE-2020-24363

TP-Link TL-WA855RE V5 20200415-rel37464 devices allow an unauthenticated attacker on the same network to submit a TDDPRESET POST request for a factory reset and reboot. The attacker can then obtain incorrect access control by setting a new administrative password...

8.8CVSS5.8AI score0.20689EPSS
In wildExploits0References4
Packet Storm
Packet Storm
added 2020/11/23 12:0 a.m.656 views

TP-Link TL-WA855RE V5_200415 Device Reset Authentication Bypass

Exploit Title: TP-Link TL-WA855RE V5200415 - Device Reset Auth Bypass Date: 2020/07/29 Exploit Author: malwrforensics Vendor Homepage: https://tp-link.com Software link: https://static.tp-link.com/2020/202004/20200430/TL-WA855REV5200415.zip Version: TL-WA855REUSV5200415 Tested on: N/A CVE :...

0.6AI score
Exploits0
Exploit DB
Exploit DB
added 2020/11/23 12:0 a.m.701 views

TP-Link TL-WA855RE V5_200415 - Device Reset Auth Bypass

Exploit Title: TP-Link TL-WA855RE V5200415 - Device Reset Auth Bypass Date: 2020/07/29 Exploit Author: malwrforensics Vendor Homepage: https://tp-link.com Software link: https://static.tp-link.com/2020/202004/20200430/TL-WA855REV5200415.zip Version: TL-WA855REUSV5200415 Tested on: N/A CVE :...

7.4AI score
Exploits0
NVD
NVD
added 2020/08/31 4:15 p.m.19 views

CVE-2020-24363

TP-Link TL-WA855RE V5 20200415-rel37464 devices allow an unauthenticated attacker on the same network to submit a TDDPRESET POST request for a factory reset and reboot. The attacker can then obtain incorrect access control by setting a new administrative password...

8.8CVSS8.8AI score0.20689EPSS
Exploits0References4
Prion
Prion
added 2020/08/31 4:15 p.m.17 views

Cross site request forgery (csrf)

TP-Link TL-WA855RE V5 20200415-rel37464 devices allow an unauthenticated attacker on the same network to submit a TDDPRESET POST request for a factory reset and reboot. The attacker can then obtain incorrect access control by setting a new administrative password...

8.3CVSS8.7AI score0.20689EPSS
Exploits0References3Affected Software1
EUVD
EUVD
added 2020/08/31 3:49 p.m.4 views

EUVD-2020-17095

TP-Link TL-WA855RE V5 20200415-rel37464 devices allow an unauthenticated attacker on the same network to submit a TDDPRESET POST request for a factory reset and reboot. The attacker can then obtain incorrect access control by setting a new administrative password...

8.8CVSS8.8AI score0.20689EPSS
Exploits0References3
CVE
CVE
added 2020/08/31 3:49 p.m.109 views

CVE-2020-24363

CVE-2020-24363 affects TP-Link TL-WA855RE V5 (20200415-rel37464). An unauthenticated attacker on the same network can submit a TDDP_RESET POST request to trigger a factory reset/reboot and then set a new administrative password, leading to incorrect access control. The vulnerability is classified...

8.8CVSS8.7AI score0.20689EPSS
In wildExploits0References4Affected Software1
Cvelist
Cvelist
added 2020/08/31 3:49 p.m.29 views

CVE-2020-24363

TP-Link TL-WA855RE V5 20200415-rel37464 devices allow an unauthenticated attacker on the same network to submit a TDDPRESET POST request for a factory reset and reboot. The attacker can then obtain incorrect access control by setting a new administrative password...

8.8AI score0.20689EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2020/08/31 12:0 a.m.6 views

PT-2020-15707

Name of the Vulnerable Software and Affected Versions: TP-Link TL-WA855RE version V5 20200415-rel37464 Description: TP-Link TL-WA855RE devices allow an unauthenticated attacker on the same network to submit a TDDP RESET POST request, leading to a factory reset and reboot. This allows the attacker...

8.8CVSS7.6AI score0.20689EPSS
Exploits0References25
OSV
OSV
added 2020/05/07 11:15 p.m.4 views

CVE-2020-10916

This vulnerability allows network-adjacent attackers to escalate privileges on affected installations of TP-Link TL-WA855RE Firmware Ver: 855rev4-up-ver1-0-1-P120191213-rel60361 Wi-Fi extenders. Although authentication is required to exploit this vulnerability, the existing authentication mechani...

8CVSS7.3AI score0.01123EPSS
Exploits0References1
NVD
NVD
added 2020/05/07 11:15 p.m.22 views

CVE-2020-10916

This vulnerability allows network-adjacent attackers to escalate privileges on affected installations of TP-Link TL-WA855RE Firmware Ver: 855rev4-up-ver1-0-1-P120191213-rel60361 Wi-Fi extenders. Although authentication is required to exploit this vulnerability, the existing authentication mechani...

8CVSS8.2AI score0.01123EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/05/07 10:20 p.m.29 views

CVE-2020-10916

This vulnerability allows network-adjacent attackers to escalate privileges on affected installations of TP-Link TL-WA855RE Firmware Ver: 855rev4-up-ver1-0-1-P120191213-rel60361 Wi-Fi extenders. Although authentication is required to exploit this vulnerability, the existing authentication mechani...

8CVSS8.2AI score0.01123EPSS
Exploits0References1
CVE
CVE
added 2020/05/07 10:20 p.m.91 views

CVE-2020-10916

The CVE-2020-10916 issue affects TP-Link TL-WA855RE Wi‑Fi extenders (firmware 855rev4-up-ver1-0-1-P1). The root cause is improper validation during the first-time setup flow, enabling a network-adjacent attacker to bypass authentication, reset the Admin password, and execute code on the device. M...

8CVSS8.2AI score0.01123EPSS
Exploits0References1Affected Software1
Zero Day Initiative
Zero Day Initiative
added 2020/04/28 12:0 a.m.40 views

TP-Link TL-WA855RE login.json Improper Authentication Privilege Escalation Vulnerability

This vulnerability allows network-adjacent attackers to escalate privileges on affected installations of TP-Link TL-WA855RE Wi-Fi extenders. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within th...

8CVSS3AI score0.01123EPSS
Exploits0
Rows per page
Query Builder