Shodan
Vulnerabilities
Vulnerable Software
Tp-Link:  Security Vulnerabilities
CVE-2018-17004
An issue was discovered on TP-Link TL-WR886N 6.0 2.3.4 and TL-WR886N 7.0 1.1.0 devices. Authenticated attackers can crash router services (e.g., inetd, HTTP, DNS, and UPnP) via long JSON data for wlan_access name.
CVSS Score
6.5
EPSS Score
0.005
Published
2018-09-13
CVE-2018-17005
An issue was discovered on TP-Link TL-WR886N 6.0 2.3.4 and TL-WR886N 7.0 1.1.0 devices. Authenticated attackers can crash router services (e.g., inetd, HTTP, DNS, and UPnP) via long JSON data for firewall dmz enable.
CVSS Score
6.5
EPSS Score
0.005
Published
2018-09-13
CVE-2018-17006
An issue was discovered on TP-Link TL-WR886N 6.0 2.3.4 and TL-WR886N 7.0 1.1.0 devices. Authenticated attackers can crash router services (e.g., inetd, HTTP, DNS, and UPnP) via long JSON data for firewall lan_manage mac2.
CVSS Score
6.5
EPSS Score
0.005
Published
2018-09-13
CVE-2018-17007
An issue was discovered on TP-Link TL-WR886N 6.0 2.3.4 and TL-WR886N 7.0 1.1.0 devices. Authenticated attackers can crash router services (e.g., inetd, HTTP, DNS, and UPnP) via long JSON data for wireless wlan_wds_2g ssid.
CVSS Score
6.5
EPSS Score
0.005
Published
2018-09-13
CVE-2018-17008
An issue was discovered on TP-Link TL-WR886N 6.0 2.3.4 and TL-WR886N 7.0 1.1.0 devices. Authenticated attackers can crash router services (e.g., inetd, HTTP, DNS, and UPnP) via long JSON data for wireless wlan_host_2g power.
CVSS Score
6.5
EPSS Score
0.005
Published
2018-09-13
CVE-2018-17009
An issue was discovered on TP-Link TL-WR886N 6.0 2.3.4 and TL-WR886N 7.0 1.1.0 devices. Authenticated attackers can crash router services (e.g., inetd, HTTP, DNS, and UPnP) via long JSON data for wireless wlan_host_2g isolate.
CVSS Score
6.5
EPSS Score
0.005
Published
2018-09-13
CVE-2018-15172
TP-Link WR840N devices have a buffer overflow via a long Authorization HTTP header.
CVSS Score
7.5
EPSS Score
0.101
Published
2018-08-15
CVE-2018-14336
TP-Link WR840N devices allow remote attackers to cause a denial of service (connectivity loss) via a series of packets with random MAC addresses.
CVSS Score
7.5
EPSS Score
0.178
Published
2018-07-19
CVE-2018-13134
TP-Link Archer C1200 1.13 Build 2018/01/24 rel.52299 EU devices have XSS via the PATH_INFO to the /webpages/data URI.
CVSS Score
6.1
EPSS Score
0.004
Published
2018-07-04
CVE-2018-12574
CSRF exists for all actions in the web interface on TP-Link TL-WR841N v13 00000001 0.9.1 4.16 v0001.0 Build 180119 Rel.65243n devices.
CVSS Score
8.8
EPSS Score
0.001
Published
2018-07-02


Products
Pricing
Contact Us

Shodan ® - All rights reserved