TP-LINK TL-WR940N Buffer Overflow Vulnerability (CNVD-2025-02852)

The TP-LINK TL-WR940N is a wireless router from China P&L TP-LINK. The TP-LINK TL-WR940N suffers from a buffer overflow vulnerability that originates from a boundary error in the dnsserver1 and dnsserver2 parameters in /userRpm/Wan6to4TunnelCfgRpm.htm when processing untrusted input. An attacker...

TP-LINK TL-WR940N 安全漏洞

The TP-LINK TL-WR940N is a wireless router from China P&L TP-LINK. The TP-LINK TL-WR940N suffers from a buffer overflow vulnerability that originates from a boundary error in the dnsserver1 and dnsserver2 parameters in /userRpm/Wan6to4TunnelCfgRpm.htm when processing untrusted input. An attacker...

CVE-2023-39745

The CVE-2023-39745 entry concerns a buffer overflow in the component /userRpm/AccessCtrlAccessRulesRpm on TP-Link TL-WR940N V2, TL-WR941ND V5, and TL-WR841N V8. The vulnerability allows a remote attacker to trigger a Denial of Service via a crafted GET request, as supported by multiple sources. T...

CVE-2023-36358

CVE-2023-36358 affects TP-Link router models TL-WR940N (V2/V3/V4), TL-WR941ND (V5/V6), TL-WR743ND (V1), and TL-WR841N (V8). The issue is a buffer overflow in the component /userRpm/AccessCtrlAccessTargetsRpm that can cause a Denial of Service (DoS) via a crafted GET request. The information consi...

CVE-2023-36359

CVE-2023-36359 affects TP-Link TL-WR940N (V4), TL-WR841N (V8/V10), TL-WR940N (V2/V3) and TL-WR941ND (V5/V6). The root cause is a buffer overflow in the /userRpm/QoSRuleListRpm component, enabling a Denial of Service via a crafted GET request. Public references consistently describe a DoS impact w...

CVE-2023-33538

The CVE-2023-33538 issue affects TP-Link TL-WR940N (V2/V4), TL-WR841N (V8/V10), and TL-WR740N (V1/V2) routers. Root cause: command injection in the WlanNetworkRpm.htm endpoint under /userRpm/WlanNetworkRpm, exploitably via the ssid1 parameter; authenticated access is required for exploitation (pe...

CVE-2022-43636

This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of TP-Link TL-WR940N 6211111 3.20.1US routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the httpd service, which listens on TCP port 80 by...

CVE-2022-43635

This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of TP-Link TL-WR940N 6211111 3.20.1US routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the httpd service, which listens on TCP por...

CVE-2022-43635

The CVE-2022-43635 entry applies to TP-Link TL-WR940N routers (version 6_211111, 3.20.1 US). The vulnerability stems from an incorrect implementation of the httpd authentication algorithm, allowing network-adjacent attackers to disclose stored credentials. Documentation consistently indicates no ...

CVE-2022-43636

TP-Link TL-WR940N (version 3.20.1(US)) is affected by CVE-2022-43636. The httpd service on port 80 uses insufficiently random session identifiers, enabling network-adjacent attackers to bypass authentication. Impact is authenticated bypass with high severity; no exploit details provided in the so...

CVE-2022-24973

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of TP-Link TL-WR940N 3.20.1 Build 200316 Rel.34392n 5553 routers. Authentication is required to exploit this vulnerability. The specific flaw exists within the httpd service, which listens on...

CVE-2022-24973

CVE-2022-24973 affects TP-Link TL-WR940N routers (httpd on port 80). The flaw is a stack-based buffer overflow caused by improper validation of user-supplied data length in the httpd service, allowing network-adjacent attackers to execute code with root privileges. Exploitation was described in Z...

CVE-2022-0650

This CVE affects TP-Link TL-WR940N routers (v3.20.1 Build 200316 Rel.34392n). The root cause is a lack of proper validation of the length of user-supplied data in the httpd service, copying into a fixed-length stack-based buffer. The vulnerability allows network-adjacent attackers to execute arbi...

Authentication flaw

TP-Link router TL-WR940N V6 3.19.1 Build 180119 uses a deprecated MD5 algorithm to hash the admin password used for basic authentication...

CVE-2023-23040

HARDWARE: TP-Link TL-WR940N V6, firmware 3.19.1 Build 180119. VULNERABLE COMPONENT/CAUSE: admin password hashing uses deprecated MD5 for basic authentication. IMPACT: potential confidentiality exposure due to weak password-hashing, per CVSS base metrics (C:H). EXPLOITATION: no explicit exploitati...

CVE-2023-23040

TP-Link router TL-WR940N V6 3.19.1 Build 180119 uses a deprecated MD5 algorithm to hash the admin password used for basic authentication...

CVE-2022-46139

TP-Link TL-WR940N V4 3.16.9 and earlier allows authenticated attackers to cause a Denial of Service DoS via uploading a crafted firmware image during the firmware update process...

CVE-2022-46139

Summary : CVE-2022-46139 affects TP-Link TL-WR940N V4, specifically versions 3.16.9 and earlier. The issue allows an authenticated attacker to trigger a Denial of Service by uploading a crafted firmware image during the firmware update process. What’s affected : The vulnerable device is the TP-Li...

TP-Link TL-WR940N httpd Use of Insufficiently Random Values Authentication Bypass Vulnerability

This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of TP-Link TL-WR940N routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the httpd service, which listens on TCP port 80 by default. The issue...

CVE-2022-24355

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of TP-Link TL-WR940N 3.20.1 Build 200316 Rel.34392n 5553 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the parsing of file name...