tp-link

535 tracked vulnerabilities.

CVE-2021-44631 CRITICAL
TP-LINK WR-886N 20190826 2.3.8 - Buffer Overflow via reset_cloud_pwd POST Request
Mar 10, 2022
CVSS 9.8
EPSS 0.02
CVE-2021-44630 CRITICAL
TP-LINK WR-886N 20190826 2.3.8 - Buffer Overflow in modify_account_pwd Feature
Mar 10, 2022
CVSS 9.8
EPSS 0.02
CVE-2021-44629 CRITICAL
TP-LINK WR-886N 20190826 2.3.8 - Buffer Overflow via /cloud_config/router_post/register
Mar 10, 2022
CVSS 9.8
EPSS 0.02
CVE-2021-44628 CRITICAL
TP-LINK WR-886N 20190826 2.3.8 - Buffer Overflow via /cloud_config/router_post/login
Mar 10, 2022
CVSS 9.8
EPSS 0.02
CVE-2021-44627 CRITICAL
TP-LINK WR-886N 20190826 2.3.8 - Buffer Overflow via get_reset_pwd_veirfy_code Request
Mar 10, 2022
CVSS 9.8
EPSS 0.02
CVE-2021-44626 CRITICAL
TP-LINK WR-886N 20190826 2.3.8 - Buffer Overflow via get_reg_verify_code Request
Mar 10, 2022
CVSS 9.8
EPSS 0.02
CVE-2021-44625 CRITICAL
TP-LINK WR-886N 20190826 2.3.8 - Buffer Overflow via Cloud Device Info Interface
Mar 10, 2022
CVSS 9.8
EPSS 0.02
CVE-2021-44623 CRITICAL
TP-LINK WR-886N 20190826 2.3.8 - Buffer Overflow via check_reset_pwd_verify_code Interface
Mar 10, 2022
CVSS 9.8
EPSS 0.02
CVE-2021-44622 CRITICAL
TP-LINK WR-886N 20190826 2.3.8 - Buffer Overflow in check_reg_verify_code Function
Mar 10, 2022
CVSS 9.8
EPSS 0.02
CVE-2021-44032 HIGH
TP-Link Omada SDN Software Controller <5.0.15 - Auth Bypass
Mar 10, 2022
CVSS 7.5
EPSS 0.02
CVE-2021-44827 HIGH
TP-Link Archer C20i Firmware < 170221 - Authenticated OS Command Injection via X_TP_ExternalIPv6Address Parameter
Mar 04, 2022
CVSS 8.8
EPSS 0.54
CVE-2021-44864 MEDIUM
TP-Link WR886N 3.0 1.0.1 Buffer Overflow via PingIframeRpm.htm
Feb 08, 2022
CVSS 6.5
EPSS 0.10
CVE-2021-35004 CRITICAL
TP-Link TL-WA1201 1.0.1 - Unauthenticated Stack-based Buffer Overflow via DNS
Jan 21, 2022
CVSS 9.8
EPSS 0.08
CVE-2021-35003 CRITICAL
TP-Link Archer C90 1.0.6 - Unauthenticated Stack-based Buffer Overflow via DNS
Jan 21, 2022
CVSS 9.8
EPSS 0.08
CVE-2021-4144 HIGH
TP-Link TL-WR802N Firmware < 211202 - OS Command Injection
Dec 23, 2021
CVSS 8.8
EPSS 0.02
CVE-2021-41451 HIGH
TP-Link Archer AX10 Firmware < V1_211117 - Unauthenticated HTTP Request Smuggling via HTTP/0.9 Response
Dec 17, 2021
CVSS 7.5
EPSS 0.02
CVE-2021-41450 HIGH
TP-Link Archer AX10 v1 Firmware < 211117 - Unauthenticated Denial of Service via HTTP Request Smuggling
Dec 08, 2021
CVSS 7.5
EPSS 0.02
CVE-2021-40288 HIGH
TP-Link Archer AX10 < V1_211014 DoS via Spoofed WPA2/WPA3-SAE Frames
Dec 07, 2021
CVSS 7.5
EPSS 0.03
CVE-2021-41653 CRITICAL NUCLEI
TP-Link TL-WR840N EU v5 Firmware <= TL-WR840N(EU)_V5_171211 - Remote Code Execution via PING IP Address Input
Nov 13, 2021
CVSS 9.8
EPSS 0.76
CVE-2021-29280 MEDIUM
TP-Link TL-WR840N Firmware - Buffer Overflow via ARP Poisoning
Aug 19, 2021
CVSS 6.4
EPSS 0.01
CVE-2021-38543 MEDIUM
TP-Link UE330 Firmware < 2021-08-09 - Speech Signal Recovery via Power Indicator LED
Aug 11, 2021
CVSS 5.9
EPSS 0.01
CVE-2021-28858 MEDIUM
TP-Link TL-WPA4220 4.0.2 Build 20180308 Rel.37064 - Cleartext Transmission of Sensitive Information
Jun 15, 2021
CVSS 5.5
EPSS 0.00
CVE-2021-28857 HIGH
TP-Link TL-WPA4220 4.0.2 Build 20180308 Rel.37064 - Insufficiently Protected Credentials via Cookie
Jun 15, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-31659 HIGH
TP-Link TL-SG2005 and TL-SG2008 Firmware 1.0.0 Build 20180529 Rel.40524 - Cross-Site Request Forgery
Jun 10, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-31658 HIGH
TP-Link TL-SG2005/TL-SG2008 Firmware 1.0.0 DoS via Device Description
Jun 10, 2021
CVSS 8.1
EPSS 0.01