CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-41541

TP-Link AX10v1 V1_211117 allows attackers to execute a replay attack by using a previously transmitted encrypted authentication message and valid authentication token. Attackers are able to login to the web application as an admin user.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 65.9%

CVSS Severity

CVSS v3 Score 8.1

References

https://github.com/efchatz/easy-exploits/tree/main/Web/TP-Link/Replay
https://www.tp-link.com/us/support/download/archer-ax10/v1/#Firmware
https://github.com/efchatz/easy-exploits/tree/main/Web/TP-Link/Replay
https://www.tp-link.com/us/support/download/archer-ax10/v1/#Firmware

Products affected by CVE-2022-41541

Tp-Link » Ax10 » Version: 1.0

cpe:2.3:h:tp-link:ax10:1.0
Tp-Link » Ax10 Firmware » Version: v1_211117

cpe:2.3:o:tp-link:ax10_firmware:v1_211117

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-41541

Products

Pricing

Contact Us