Vulnerability Details CVE-2020-28877
Buffer overflow in in the copy_msg_element function for the devDiscoverHandle server in the TP-Link WR and WDR series, including WDR7400, WDR7500, WDR7660, WDR7800, WDR8400, WDR8500, WDR8600, WDR8620, WDR8640, WDR8660, WR880N, WR886N, WR890N, WR890N, WR882N, and WR708N.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 63.1%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
Products affected by CVE-2020-28877
-
cpe:2.3:h:tp-link:wdr7400:-
-
cpe:2.3:h:tp-link:wdr7500:-
-
cpe:2.3:h:tp-link:wdr7660:-
-
cpe:2.3:h:tp-link:wdr7800:-
-
cpe:2.3:h:tp-link:wdr8400:-
-
cpe:2.3:h:tp-link:wdr8500:-
-
cpe:2.3:h:tp-link:wdr8600:-
-
cpe:2.3:h:tp-link:wdr8620:-
-
cpe:2.3:h:tp-link:wdr8640:-
-
cpe:2.3:h:tp-link:wdr8660:-
-
cpe:2.3:h:tp-link:wr708n:-
-
cpe:2.3:h:tp-link:wr880n:-
-
cpe:2.3:h:tp-link:wr882n:-
-
cpe:2.3:h:tp-link:wr886n:-
-
cpe:2.3:h:tp-link:wr890n:-
-
cpe:2.3:o:tp-link:wdr7400_firmware:-
-
cpe:2.3:o:tp-link:wdr7500_firmware:-
-
cpe:2.3:o:tp-link:wdr7660_firmware:-
-
cpe:2.3:o:tp-link:wdr7800_firmware:-
-
cpe:2.3:o:tp-link:wdr8400_firmware:-
-
cpe:2.3:o:tp-link:wdr8500_firmware:-
-
cpe:2.3:o:tp-link:wdr8600_firmware:-
-
cpe:2.3:o:tp-link:wdr8620_firmware:-
-
cpe:2.3:o:tp-link:wdr8640_firmware:-
-
cpe:2.3:o:tp-link:wdr8660_firmware:-
-
cpe:2.3:o:tp-link:wr708n_firmware:-
-
cpe:2.3:o:tp-link:wr880n_firmware:-
-
cpe:2.3:o:tp-link:wr882n_firmware:-
-
cpe:2.3:o:tp-link:wr886n_firmware:-
-
cpe:2.3:o:tp-link:wr890n_firmware:-