tp-link

523 tracked vulnerabilities.

CVE-2021-35004 CRITICAL
TP-Link TL-WA1201 1.0.1 - Unauthenticated Stack-based Buffer Overflow via DNS
Jan 21, 2022
CVSS 9.8
EPSS 0.08
CVE-2021-35003 CRITICAL
TP-Link Archer C90 1.0.6 - Unauthenticated Stack-based Buffer Overflow via DNS
Jan 21, 2022
CVSS 9.8
EPSS 0.11
CVE-2021-4144 HIGH
TP-Link TL-WR802N Firmware < 211202 - OS Command Injection
Dec 23, 2021
CVSS 8.8
EPSS 0.02
CVE-2021-41451 HIGH
TP-Link Archer AX10 Firmware < V1_211117 - Unauthenticated HTTP Request Smuggling via HTTP/0.9 Response
Dec 17, 2021
CVSS 7.5
EPSS 0.07
CVE-2021-41450 HIGH
TP-Link Archer AX10 v1 Firmware < 211117 - Unauthenticated Denial of Service via HTTP Request Smuggling
Dec 08, 2021
CVSS 7.5
EPSS 0.06
CVE-2021-40288 HIGH
TP-Link Archer AX10 < V1_211014 DoS via Spoofed WPA2/WPA3-SAE Frames
Dec 07, 2021
CVSS 7.5
EPSS 0.02
CVE-2021-41653 CRITICAL NUCLEI
TP-Link TL-WR840N EU v5 Firmware <= TL-WR840N(EU)_V5_171211 - Remote Code Execution via PING IP Address Input
Nov 13, 2021
CVSS 9.8
EPSS 0.92
CVE-2021-29280 MEDIUM
TP-Link TL-WR840N Firmware - Buffer Overflow via ARP Poisoning
Aug 19, 2021
CVSS 6.4
EPSS 0.00
CVE-2021-38543 MEDIUM
TP-Link UE330 Firmware < 2021-08-09 - Speech Signal Recovery via Power Indicator LED
Aug 11, 2021
CVSS 5.9
EPSS 0.00
CVE-2021-28858 MEDIUM
TP-Link TL-WPA4220 4.0.2 Build 20180308 Rel.37064 - Cleartext Transmission of Sensitive Information
Jun 15, 2021
CVSS 5.5
EPSS 0.00
CVE-2021-28857 HIGH
TP-Link TL-WPA4220 4.0.2 Build 20180308 Rel.37064 - Insufficiently Protected Credentials via Cookie
Jun 15, 2021
CVSS 7.5
EPSS 0.00
CVE-2021-31659 HIGH
TP-Link TL-SG2005 and TL-SG2008 Firmware 1.0.0 Build 20180529 Rel.40524 - Cross-Site Request Forgery
Jun 10, 2021
CVSS 8.8
EPSS 0.00
CVE-2021-31658 HIGH
TP-Link TL-SG2005/TL-SG2008 Firmware 1.0.0 DoS via Device Description
Jun 10, 2021
CVSS 8.1
EPSS 0.00
CVE-2021-27246 HIGH
TP-Link Archer A7 AC1750 1.0.15 - RCE
Apr 14, 2021
CVSS 8.0
EPSS 0.16
CVE-2021-26827 HIGH
TP-Link TL-WR2041+ Firmware - Denial of Service via Long SSID Parameter in Site Survey Page
Apr 14, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-3125 HIGH
TP-Link TL-XDR Series Firmware - Denial of Service via IPv6 Routing Loop
Apr 12, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-29302 HIGH
TP-Link TL-WR802N Firmware < 2020.06 - Remote Code Execution via HTTP Body Buffer Overflow
Apr 12, 2021
CVSS 8.1
EPSS 0.10
CVE-2021-27245 HIGH
TP-Link Archer A7 <V5_210125-V5_200220 - Firewall Bypass
Mar 29, 2021
CVSS 8.1
EPSS 0.04
CVE-2021-3275 MEDIUM
TP-Link Routers and Access Points - Stored XSS via Hostname
Mar 26, 2021
CVSS 6.1
EPSS 0.01
CVE-2021-27210 MEDIUM
TP-Link Archer C5v 1.7_181221 - Cleartext Storage of Sensitive Information via USER_CFG Parameter
Feb 13, 2021
CVSS 6.5
EPSS 0.00
CVE-2021-27209 HIGH
TP-Link Archer C5v 1.7_181221 - Cleartext Transmission of Sensitive Information via Base64-Encoded Credentials
Feb 13, 2021
CVSS 7.1
EPSS 0.00
CVE-2020-17891 MEDIUM
TP-Link Archer C1200 Firmware 1.13 Build 2018/01/24 rel.52299 EU - Stored Cross-Site Scripting
May 14, 2021
CVSS 6.1
EPSS 0.01
CVE-2020-35576 HIGH
TP-Link TL-WR841N V13 (JP) < 201216 - Authenticated OS Command Injection via Traceroute Feature
Jan 26, 2021
CVSS 8.8
EPSS 0.71
CVE-2020-36178 CRITICAL
TP-Link TL-WR840N 6_EU_0.9.1_4.16 - OS Command Injection via IP Address Field
Jan 06, 2021
CVSS 9.8
EPSS 0.14
CVE-2020-35575 CRITICAL
TP-Link WA901ND <3.16.9(201211) beta - Info Disclosure
Dec 26, 2020
CVSS 9.8
EPSS 0.19
Products
tl-wr886n_firmware 39 tl-wr841n_firmware 38 er5110g_firmware 25 er5120g_firmware 25 er5510g_firmware 25 er5520g_firmware 25 r4149g_firmware 25 r4239g_firmware 25 r4299g_firmware 25 r473_firmware 25 r473g_firmware 25 r473gp-ac_firmware 25 r473p-ac_firmware 25 r478\+_firmware 25 r478_firmware 25 r478g\+_firmware 25 r483_firmware 25 r483g_firmware 25 r488_firmware 25 war1300l_firmware 25 war1750l_firmware 25 war2600l_firmware 25 war302_firmware 25 war450_firmware 25 war450l_firmware 25 war458_firmware 25 war458l_firmware 25 war900l_firmware 25 wvr1300g_firmware 25 wvr1300l_firmware 25
Quick Filters
Critical CVEs With Exploits In CISA KEV