Vulnerability Details CVE-2022-26988
TP-Link TL-WDR7660 2.0.30, Mercury D196G 20200109_2.0.4, and Fast FAC1900R 20190827_2.0.2 routers have a stack overflow issue in `MntAte` function. Local users could get remote code execution.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 66.5%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 7.2
References
Products affected by CVE-2022-26988
-
cpe:2.3:h:fastcom:fac1900r:-
-
cpe:2.3:h:mercusys:mercury_d196g:-
-
cpe:2.3:h:tp-link:tl-wdr5660:-
-
cpe:2.3:h:tp-link:tl-wdr7620:-
-
cpe:2.3:h:tp-link:tl-wdr7660:-
-
cpe:2.3:h:tp-link:tl-wdr7661:-
-
cpe:2.3:o:fastcom:fac1900r_firmware:20190827_2.0.2
-
cpe:2.3:o:mercusys:mercury_d196g_firmware:20200109_2.0.4
-
cpe:2.3:o:tp-link:tl-wdr5660_firmware:-
-
cpe:2.3:o:tp-link:tl-wdr7620_firmware:-
-
cpe:2.3:o:tp-link:tl-wdr7660_firmware:2.0.30
-
cpe:2.3:o:tp-link:tl-wdr7661_firmware:-