Lucene search
K

53 matches found

Cvelist
Cvelist
added 2026/06/16 9:3 p.m.39 views

CVE-2026-11409 OS Command Injection in IPv6 PPPoE Configuration in TP-Link TL-WR940N

An authenticated OS command injection vulnerability exists in the IPv6 PPPoE configuration handler in TL-WR940N v6 due to improper sanitization of user input. An attacker with administrative access may exploit this issue to execute arbitrary system commands with elevated privileges...

8.5CVSS0.02787EPSS
Exploits0References3
NVD
NVD
added 2025/11/20 3:17 p.m.7 views

CVE-2025-11676

Improper input validation vulnerability in TP-Link System Inc. TL-WR940N V6 UPnP modules, which allows unauthenticated adjacent attackers to perform DoS attack. This issue affects TL-WR940N V6 = Build 220801...

7.1CVSS0.00173EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-48977

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00289EPSS
Exploits0References3
GithubExploit
GithubExploit
added 2025/06/23 10:47 p.m.305 views

Exploit for Command Injection in Tp-Link Tl-Wr940N_Firmware

CVE-2023-33538 – TP-Link TL-WR940N/841N Command Injection Met...

8.8CVSS8AI score0.41874EPSS
Exploits3
RedhatCVE
RedhatCVE
added 2025/06/19 1:10 a.m.8 views

CVE-2025-6151

A vulnerability has been found in TP-Link TL-WR940N V4 and TL-WR841N V11. Affected by this issue is some unknown functionality of the file /userRpm/WanSlaacCfgRpm.htm, which may lead to buffer overflow. The attack may be launched remotely. This vulnerability only affects products that are no long...

8.2CVSS6.5AI score0.03069EPSS
Exploits1References1
CVE
CVE
added 2025/06/17 1:0 a.m.38 views

CVE-2025-6151

CVE-2025-6151 affects TP-Link TL-WR940N V4 and TL-WR841N V11. The root cause is a buffer overflow in the /userRpm/WanSlaacCfgRpm.htm functionality triggered by manipulating the dnsserver1 parameter. This can be exploited remotely over the network, and the affected devices are no longer supported ...

8.2CVSS8.7AI score0.03069EPSS
Exploits1References5Affected Software1
Positive Technologies
Positive Technologies
added 2025/06/09 12:0 a.m.9 views

PT-2025-25605 · Tp Link · Tp-Link Tl-Wr940N

Name of the Vulnerable Software and Affected Versions: TP-Link TL-WR940N version V4 Description: A critical vulnerability has been found in the TP-Link TL-WR940N V4, affecting some unknown functionality of the file /userRpm/WanSlaacCfgRpm.htm. The manipulation of the argument dnsserver1 leads to...

9CVSS6.4AI score0.03069EPSS
Exploits1References17
RedhatCVE
RedhatCVE
added 2025/05/23 12:20 a.m.9 views

CVE-2022-46139

TP-Link TL-WR940N V4 3.16.9 and earlier allows authenticated attackers to cause a Denial of Service DoS via uploading a crafted firmware image during the firmware update process...

6.5CVSS6.7AI score0.00289EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:38 a.m.12 views

CVE-2019-6989

TP-Link TL-WR940N is vulnerable to a stack-based buffer overflow, caused by improper bounds checking by the ipAddrDispose function. By sending specially crafted ICMP echo request packets, a remote authenticated attacker could overflow a buffer and execute arbitrary code on the system with elevate...

9CVSS7.9AI score0.1158EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/02/05 9:50 p.m.13 views

CVE-2022-24355

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of TP-Link TL-WR940N 3.20.1 Build 200316 Rel.34392n 5553 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the parsing of file name...

8.8CVSS7.1AI score0.01905EPSS
Exploits0References1
OSV
OSV
added 2025/01/09 8:15 p.m.4 views

CVE-2024-54887

TP-Link TL-WR940N V3 and V4 with firmware 3.16.9 and earlier contain a buffer overflow via the dnsserver1 and dnsserver2 parameters at /userRpm/Wan6to4TunnelCfgRpm.htm. This vulnerability allows an authenticated attacker to execute arbitrary code on the remote device in the context of the root us...

8CVSS6.4AI score0.05367EPSS
Exploits1References2
NVD
NVD
added 2025/01/09 8:15 p.m.12 views

CVE-2024-54887

TP-Link TL-WR940N V3 and V4 with firmware 3.16.9 and earlier contain a buffer overflow via the dnsserver1 and dnsserver2 parameters at /userRpm/Wan6to4TunnelCfgRpm.htm. This vulnerability allows an authenticated attacker to execute arbitrary code on the remote device in the context of the root us...

8CVSS0.05367EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/01/09 12:0 a.m.8 views

CVE-2024-54887

TP-Link TL-WR940N V3 and V4 with firmware 3.16.9 and earlier contain a buffer overflow via the dnsserver1 and dnsserver2 parameters at /userRpm/Wan6to4TunnelCfgRpm.htm. This vulnerability allows an authenticated attacker to execute arbitrary code on the remote device in the context of the root us...

8.2AI score0.05367EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/01/09 12:0 a.m.11 views

CVE-2024-54887

TP-Link TL-WR940N V3 and V4 with firmware 3.16.9 and earlier contain a buffer overflow via the dnsserver1 and dnsserver2 parameters at /userRpm/Wan6to4TunnelCfgRpm.htm. This vulnerability allows an authenticated attacker to execute arbitrary code on the remote device in the context of the root us...

0.05367EPSS
Exploits1References1
CVE
CVE
added 2025/01/09 12:0 a.m.104 views

CVE-2024-54887

Affected product: TP-Link TL-WR940N (V3/V4) with firmware 3.16.9 or earlier. The issue is a buffer overflow in handling dnsserver1 and dnsserver2 parameters at /userRpm/Wan6to4TunnelCfgRpm.htm, allowing an authenticated attacker to execute arbitrary code as root. Some sources indicate a PoC explo...

8CVSS8.5AI score0.05367EPSS
Exploits1References1Affected Software1
0day.today
0day.today
added 2023/07/04 12:0 a.m.200 views

TP-Link TL-WR940N V4 - Buffer OverFlow Exploit

Exploit Title: TP-Link TL-WR940N V4 - Buffer OverFlow country: Iran Exploit Author: Amirhossein Bahramizadeh Category : hardware Dork : /userRpm/WanDynamicIpV6CfgRpm Tested on: Windows/Linux CVE : CVE-2023-36355 import requests Replace the IP address with the router's IP routerip = '192.168.0.1'...

9.9CVSS7.1AI score0.31733EPSS
Exploits4
ATTACKERKB
ATTACKERKB
added 2023/06/22 8:15 p.m.6 views

CVE-2023-36355

TP-Link TL-WR940N V4 was discovered to contain a buffer overflow via the ipStart parameter at /userRpm/WanDynamicIpV6CfgRpm. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted GET request...

9.9CVSS7.7AI score0.31733EPSS
Exploits4References3
Prion
Prion
added 2023/06/22 8:15 p.m.24 views

Buffer overflow

TP-Link TL-WR940N V4 was discovered to contain a buffer overflow via the ipStart parameter at /userRpm/WanDynamicIpV6CfgRpm. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted GET request...

6.5CVSS9.4AI score0.31733EPSS
Exploits4References2
CNNVD
CNNVD
added 2023/06/22 12:0 a.m.6 views

TP-LINK TL-WR940N 安全漏洞

The TP-LINK TL-WR940N is a wireless router from China P&L TP-LINK. The TP-LINK TL-WR940N suffers from a security vulnerability that originates from a buffer overflow vulnerability contained in the component AccessCtrlAccessTargetsRPM. An attacker could exploit this vulnerability to cause a denial...

7.7CVSS7.7AI score0.00704EPSS
Exploits1References2
CVE
CVE
added 2023/06/22 12:0 a.m.68 views

CVE-2023-36355

Summary: CVE-2023-36355 affects the TP-Link TL-WR940N v4 router, via a buffer overflow in the WanDynamicIpV6CfgRpm endpoint when processing the ipStart parameter at /userRpm/WanDynamicIpV6CfgRpm, leading to a DoS. Public exploit/ PoC material exists (exploits reference the same endpoint with ipSt...

9.9CVSS9.4AI score0.31733EPSS
Exploits4References2Affected Software1
Rows per page
Query Builder