CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-8423

A buffer overflow in the httpd daemon on TP-Link TL-WR841N V10 (firmware version 3.16.9) devices allows an authenticated remote attacker to execute arbitrary code via a GET request to the page for the configuration of the Wi-Fi network.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.313

EPSS Ranking 96.5%

CVSS Severity

CVSS v3 Score 7.2

CVSS v2 Score 9.0

References

https://ktln2.org/2020/03/29/exploiting-mips-router/
https://www.tp-link.com/us/security
https://ktln2.org/2020/03/29/exploiting-mips-router/
https://www.tp-link.com/us/security

Products affected by CVE-2020-8423

Tp-Link » Tl-Wr841n » Version: v10

cpe:2.3:h:tp-link:tl-wr841n:v10
Tp-Link » Tl-Wr841n Firmware » Version: 3.16.9

cpe:2.3:o:tp-link:tl-wr841n_firmware:3.16.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-8423

Products

Pricing

Contact Us