CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-25074

TP-Link TL-WR902AC(US)_V3_191209 routers were discovered to contain a stack overflow in the function DM_ Fillobjbystr(). This vulnerability allows unauthenticated attackers to execute arbitrary code.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.033

EPSS Ranking 86.8%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 10.0

References

https://github.com/EPhaha/IOT_vuln/tree/main/TP-Link/TL-WR902AC
https://github.com/EPhaha/IOT_vuln/tree/main/TP-Link/TL-WR902AC

Products affected by CVE-2022-25074

Tp-Link » Tl-Wr902ac » Version: 3

cpe:2.3:h:tp-link:tl-wr902ac:3
Tp-Link » Tl-Wr902ac Firmware » Version: 191209

cpe:2.3:o:tp-link:tl-wr902ac_firmware:191209

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-25074

Products

Pricing

Contact Us