CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-46432

An exploitable firmware modification vulnerability was discovered on TP-Link TL-WR743ND V1. An attacker can conduct a MITM (Man-in-the-Middle) attack to modify the user-uploaded firmware image and bypass the CRC check, allowing attackers to execute arbitrary code or cause a Denial of Service (DoS). This affects v3.12.20 and earlier.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 51.2%

CVSS Severity

CVSS v3 Score 7.5

References

https://hackmd.io/%40slASVrz_SrW7NQCsunofeA/B1Vgv1uwo
https://www.tp-link.com/us/press/security-advisory/
https://hackmd.io/%40slASVrz_SrW7NQCsunofeA/B1Vgv1uwo
https://www.tp-link.com/us/press/security-advisory/

Products affected by CVE-2022-46432

Tp-Link » Tl-Wr743nd V1 » Version: N/A

cpe:2.3:h:tp-link:tl-wr743nd_v1:-
Tp-Link » Tl-Wr743nd V1 Firmware » Version: Any

cpe:2.3:o:tp-link:tl-wr743nd_v1_firmware:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-46432

Products

Pricing

Contact Us