53 matches found
CVE-2026-11409 OS Command Injection in IPv6 PPPoE Configuration in TP-Link TL-WR940N
An authenticated OS command injection vulnerability exists in the IPv6 PPPoE configuration handler in TL-WR940N v6 due to improper sanitization of user input. An attacker with administrative access may exploit this issue to execute arbitrary system commands with elevated privileges...
CVE-2025-11676
Improper input validation vulnerability in TP-Link System Inc. TL-WR940N V6 UPnP modules, which allows unauthenticated adjacent attackers to perform DoS attack. This issue affects TL-WR940N V6 = Build 220801...
EUVD-2022-48977
Malicious code in bioql PyPI...
Exploit for Command Injection in Tp-Link Tl-Wr940N_Firmware
CVE-2023-33538 – TP-Link TL-WR940N/841N Command Injection Met...
CVE-2025-6151
A vulnerability has been found in TP-Link TL-WR940N V4 and TL-WR841N V11. Affected by this issue is some unknown functionality of the file /userRpm/WanSlaacCfgRpm.htm, which may lead to buffer overflow. The attack may be launched remotely. This vulnerability only affects products that are no long...
CVE-2025-6151
CVE-2025-6151 affects TP-Link TL-WR940N V4 and TL-WR841N V11. The root cause is a buffer overflow in the /userRpm/WanSlaacCfgRpm.htm functionality triggered by manipulating the dnsserver1 parameter. This can be exploited remotely over the network, and the affected devices are no longer supported ...
PT-2025-25605 · Tp Link · Tp-Link Tl-Wr940N
Name of the Vulnerable Software and Affected Versions: TP-Link TL-WR940N version V4 Description: A critical vulnerability has been found in the TP-Link TL-WR940N V4, affecting some unknown functionality of the file /userRpm/WanSlaacCfgRpm.htm. The manipulation of the argument dnsserver1 leads to...
CVE-2022-46139
TP-Link TL-WR940N V4 3.16.9 and earlier allows authenticated attackers to cause a Denial of Service DoS via uploading a crafted firmware image during the firmware update process...
CVE-2019-6989
TP-Link TL-WR940N is vulnerable to a stack-based buffer overflow, caused by improper bounds checking by the ipAddrDispose function. By sending specially crafted ICMP echo request packets, a remote authenticated attacker could overflow a buffer and execute arbitrary code on the system with elevate...
CVE-2022-24355
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of TP-Link TL-WR940N 3.20.1 Build 200316 Rel.34392n 5553 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the parsing of file name...
CVE-2024-54887
TP-Link TL-WR940N V3 and V4 with firmware 3.16.9 and earlier contain a buffer overflow via the dnsserver1 and dnsserver2 parameters at /userRpm/Wan6to4TunnelCfgRpm.htm. This vulnerability allows an authenticated attacker to execute arbitrary code on the remote device in the context of the root us...
CVE-2024-54887
TP-Link TL-WR940N V3 and V4 with firmware 3.16.9 and earlier contain a buffer overflow via the dnsserver1 and dnsserver2 parameters at /userRpm/Wan6to4TunnelCfgRpm.htm. This vulnerability allows an authenticated attacker to execute arbitrary code on the remote device in the context of the root us...
CVE-2024-54887
TP-Link TL-WR940N V3 and V4 with firmware 3.16.9 and earlier contain a buffer overflow via the dnsserver1 and dnsserver2 parameters at /userRpm/Wan6to4TunnelCfgRpm.htm. This vulnerability allows an authenticated attacker to execute arbitrary code on the remote device in the context of the root us...
CVE-2024-54887
TP-Link TL-WR940N V3 and V4 with firmware 3.16.9 and earlier contain a buffer overflow via the dnsserver1 and dnsserver2 parameters at /userRpm/Wan6to4TunnelCfgRpm.htm. This vulnerability allows an authenticated attacker to execute arbitrary code on the remote device in the context of the root us...
CVE-2024-54887
Affected product: TP-Link TL-WR940N (V3/V4) with firmware 3.16.9 or earlier. The issue is a buffer overflow in handling dnsserver1 and dnsserver2 parameters at /userRpm/Wan6to4TunnelCfgRpm.htm, allowing an authenticated attacker to execute arbitrary code as root. Some sources indicate a PoC explo...
TP-Link TL-WR940N V4 - Buffer OverFlow Exploit
Exploit Title: TP-Link TL-WR940N V4 - Buffer OverFlow country: Iran Exploit Author: Amirhossein Bahramizadeh Category : hardware Dork : /userRpm/WanDynamicIpV6CfgRpm Tested on: Windows/Linux CVE : CVE-2023-36355 import requests Replace the IP address with the router's IP routerip = '192.168.0.1'...
CVE-2023-36355
TP-Link TL-WR940N V4 was discovered to contain a buffer overflow via the ipStart parameter at /userRpm/WanDynamicIpV6CfgRpm. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted GET request...
Buffer overflow
TP-Link TL-WR940N V4 was discovered to contain a buffer overflow via the ipStart parameter at /userRpm/WanDynamicIpV6CfgRpm. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted GET request...
TP-LINK TL-WR940N 安全漏洞
The TP-LINK TL-WR940N is a wireless router from China P&L TP-LINK. The TP-LINK TL-WR940N suffers from a security vulnerability that originates from a buffer overflow vulnerability contained in the component AccessCtrlAccessTargetsRPM. An attacker could exploit this vulnerability to cause a denial...
CVE-2023-36355
Summary: CVE-2023-36355 affects the TP-Link TL-WR940N v4 router, via a buffer overflow in the WanDynamicIpV6CfgRpm endpoint when processing the ipStart parameter at /userRpm/WanDynamicIpV6CfgRpm, leading to a DoS. Public exploit/ PoC material exists (exploits reference the same endpoint with ipSt...