CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-3227

A command injection vulnerability was identified in TP-Link TL-WR802N v4, TL-WR841N v14, and TL-WR840N v6 due to improper neutralization of special elements used in an OS command. In the router configuration import function allows an authenticated attacker to upload a crafted configuration file that results in execution of OS commands with root privileges during port-trigger processing. Successful exploitation allows an authenticated attacker to execute system commands with root privileges, leading to full device compromise.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 66.6%

CVSS Severity

CVSS v3 Score 6.8

References

Products affected by CVE-2026-3227

Tp-Link » Tl-Wr802n » Version: v4

cpe:2.3:h:tp-link:tl-wr802n:v4
Tp-Link » Tl-Wr840n » Version: 6

cpe:2.3:h:tp-link:tl-wr840n:6
Tp-Link » Tl-Wr841n » Version: 14

cpe:2.3:h:tp-link:tl-wr841n:14
Tp-Link » Tl-Wr802n Firmware » Version: 221008

cpe:2.3:o:tp-link:tl-wr802n_firmware:221008
Tp-Link » Tl-Wr840n Firmware » Version: N/A

cpe:2.3:o:tp-link:tl-wr840n_firmware:-
Tp-Link » Tl-Wr840n Firmware » Version: 0.9.1

cpe:2.3:o:tp-link:tl-wr840n_firmware:0.9.1
Tp-Link » Tl-Wr840n Firmware » Version: 0.9.1.4.16

cpe:2.3:o:tp-link:tl-wr840n_firmware:0.9.1.4.16
Tp-Link » Tl-Wr840n Firmware » Version: 0.9.1_3.16

cpe:2.3:o:tp-link:tl-wr840n_firmware:0.9.1_3.16
Tp-Link » Tl-Wr840n Firmware » Version: 0.9.1_4.17_v0001.0

cpe:2.3:o:tp-link:tl-wr840n_firmware:0.9.1_4.17_v0001.0
Tp-Link » Tl-Wr840n Firmware » Version: 231121

cpe:2.3:o:tp-link:tl-wr840n_firmware:231121
Tp-Link » Tl-Wr840n Firmware » Version: 3.13.27

cpe:2.3:o:tp-link:tl-wr840n_firmware:3.13.27
Tp-Link » Tl-Wr840n Firmware » Version: 6.20_180709

cpe:2.3:o:tp-link:tl-wr840n_firmware:6.20_180709
Tp-Link » Tl-Wr840n Firmware » Version: 6_eu_0.9.1_4.16

cpe:2.3:o:tp-link:tl-wr840n_firmware:6_eu_0.9.1_4.16
Tp-Link » Tl-Wr841n Firmware » Version: N/A

cpe:2.3:o:tp-link:tl-wr841n_firmware:-
Tp-Link » Tl-Wr841n Firmware » Version: 0.9.1_4.16

cpe:2.3:o:tp-link:tl-wr841n_firmware:0.9.1_4.16
Tp-Link » Tl-Wr841n Firmware » Version: 0.9.1_4.18

cpe:2.3:o:tp-link:tl-wr841n_firmware:0.9.1_4.18
Tp-Link » Tl-Wr841n Firmware » Version: 150310

cpe:2.3:o:tp-link:tl-wr841n_firmware:150310
Tp-Link » Tl-Wr841n Firmware » Version: 150616

cpe:2.3:o:tp-link:tl-wr841n_firmware:150616
Tp-Link » Tl-Wr841n Firmware » Version: 201216

cpe:2.3:o:tp-link:tl-wr841n_firmware:201216
Tp-Link » Tl-Wr841n Firmware » Version: 230506

cpe:2.3:o:tp-link:tl-wr841n_firmware:230506
Tp-Link » Tl-Wr841n Firmware » Version: 231119

cpe:2.3:o:tp-link:tl-wr841n_firmware:231119
Tp-Link » Tl-Wr841n Firmware » Version: 241108

cpe:2.3:o:tp-link:tl-wr841n_firmware:241108
Tp-Link » Tl-Wr841n Firmware » Version: 3.13.9

cpe:2.3:o:tp-link:tl-wr841n_firmware:3.13.9
Tp-Link » Tl-Wr841n Firmware » Version: 3.16.9

cpe:2.3:o:tp-link:tl-wr841n_firmware:3.16.9
Tp-Link » Tl-Wr841n Firmware » Version: 4.17.16_build_120201_rel.54750n

cpe:2.3:o:tp-link:tl-wr841n_firmware:4.17.16_build_120201_rel.54750n

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-3227

Products

Pricing

Contact Us