tp-link

535 tracked vulnerabilities.

CVE-2025-6542 CRITICAL
Product <Version - Command Injection
Oct 21, 2025
CVSS 9.8
EPSS 0.01
CVE-2025-6541 HIGH
Product <Version> - Command Injection
Oct 21, 2025
CVSS 8.8
EPSS 0.01
CVE-2025-9377 HIGH KEV
TP-Link Archer C7(EU) V2 & TL-WR841N/ND(MS) V9 - Authenticated RCE
Aug 29, 2025
CVSS 7.2
EPSS 0.12
CVE-2025-8627 HIGH
TP-Link KP303 Firmware < 1.1.0 - Unauthenticated Protocol Command Injection
Aug 25, 2025
CVSS 8.8
EPSS 0.00
CVE-2025-53715 HIGH
TP-Link TL-WR841N V11 - Buffer Overflow
Jul 29, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-53714 HIGH
TP-Link TL-WR841N V11 - Buffer Overflow
Jul 29, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-53713 HIGH
TP-Link TL-WR841N V11 - Buffer Overflow
Jul 29, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-53712 HIGH
TP-Link TL-WR841N V11 - Buffer Overflow
Jul 29, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-53711 HIGH
TP-Link TL-WR841N V11 - Buffer Overflow
Jul 29, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-6151 HIGH
TP-Link TL-WR940N V4 and TL-WR841N V11 - Buffer Overflow in WanSlaacCfgRpm.htm
Jun 17, 2025
EPSS 0.03
CVE-2025-5875 HIGH
TP-LINK TL-IPC544EP-W4 1.0.9 Build 240428 Rel 69493n - Buffer Overflow in sub_69064 via Text Argument
Jun 09, 2025
CVSS 8.8
EPSS 0.01
CVE-2025-40634 CRITICAL
TP-Link Archer AX50 <1.0.15 - Buffer Overflow
May 20, 2025
EPSS 0.01
CVE-2025-25427 MEDIUM
TP-Link WR841N v14/v14.6/v14.8 <= Build 241230 - Stored Cross-Site Scripting via UPnP Port Mapping Description
Apr 18, 2025
CVSS 5.4
EPSS 0.01
CVE-2025-3442 MEDIUM
TP-Link Tapo H200 V1 - Info Disclosure
Apr 09, 2025
EPSS 0.00
CVE-2025-25901 HIGH
TP-Link TL-WR841ND V11 - Denial of Service via dnsserver1 and dnsserver2 Parameters
Feb 13, 2025
CVSS 7.5
EPSS 0.01
CVE-2025-25900 MEDIUM
TP-Link TL-WR841ND V11 Firmware - Denial of Service via Username and Password Parameters
Feb 13, 2025
CVSS 4.9
EPSS 0.00
CVE-2025-25899 LOW
TP-Link TL-WR841ND V11 Firmware - Denial of Service via 'gw' Parameter Buffer Overflow
Feb 13, 2025
CVSS 3.5
EPSS 0.00
CVE-2025-25898 HIGH
TP-Link TL-WR841ND V11 - Denial of Service via pskSecret Parameter Buffer Overflow
Feb 13, 2025
CVSS 7.5
EPSS 0.01
CVE-2025-25897 HIGH
TP-Link TL-WR841ND V11 - Denial of Service via 'ip' Parameter Buffer Overflow
Feb 13, 2025
CVSS 7.5
EPSS 0.01
CVE-2025-1099 HIGH
Tapo C500 Wi-Fi camera - Info Disclosure
Feb 10, 2025
EPSS 0.00
CVE-2025-0730 LOW
TP-Link TL-SG108E <1.0.0 Build 20201208 Rel. 40304 - Use After Free
Jan 27, 2025
CVSS 3.7
EPSS 0.01
CVE-2025-0729 MEDIUM
TP-Link TL-SG108E <1.0.0 Build 20201208 Rel. 40304 - Clickjacking
Jan 27, 2025
CVSS 4.3
EPSS 0.00
CVE-2024-57040 CRITICAL
TP-Link TL-WR845N Firmware < 250401 - Use of Hard-coded Credentials
Feb 26, 2025
CVSS 9.8
EPSS 0.01
CVE-2024-57357 HIGH
TP-Link TL-WPA8630 Firmware 2.0.4 - Remote Code Execution via Command Injection in 'devpwd' Parameter
Feb 07, 2025
CVSS 8.0
EPSS 0.05
CVE-2024-54887 HIGH
TP-Link TL-WR940N V3/V4 < 3.16.9 - Authenticated Remote Code Execution via dnsserver1/dnsserver2 Buffer Overflow
Jan 09, 2025
CVSS 8.0
EPSS 0.05