tp-link

535 tracked vulnerabilities.

CVE-2024-37661 MEDIUM
TP-LINK TL-7DR5130 1.0.23 - Traffic Hijacking via Forged ICMP Redirect Messages
Jun 17, 2024
CVSS 6.3
EPSS 0.00
CVE-2024-5035 HIGH
Archer C4500X <1.1.1.6 - Command Injection
May 27, 2024
EPSS 0.03
CVE-2024-5244 MEDIUM
TP-Link Omada ER605 - Info Disclosure
May 23, 2024
CVSS 4.2
EPSS 0.00
CVE-2024-5243 HIGH
TP-Link Omada ER605 - Unauthenticated Remote Code Execution via DNS Name Buffer Overflow
May 23, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-5242 HIGH
TP-Link Omada ER605 - Unauthenticated Stack-based Buffer Overflow via DDNS Error Code Handling
May 23, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-5228 HIGH
TP-Link Omada ER605 - Unauthenticated Heap-based Buffer Overflow via Comexe DDNS Response Handling
May 23, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-5227 HIGH
TP-Link Omada ER605 Firmware - Unauthenticated Remote Code Execution via PPTP VPN Username Parameter
May 23, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-31340 MEDIUM
TP-Link Tether <4.5.13 & Tapo <3.3.6 - Info Disclosure
May 22, 2024
CVSS 4.8
EPSS 0.00
CVE-2024-1180 HIGH
TP-Link Omada ER605 Firmware < 2.2.3 - Authenticated OS Command Injection via Access Control Name Field
Apr 03, 2024
CVSS 8.0
EPSS 0.01
CVE-2024-1179 HIGH
TP-Link Omada ER605 Firmware < 2.2.4 - Unauthenticated Stack-based Buffer Overflow via DHCPv6 Client Options
Apr 01, 2024
CVSS 8.8
EPSS 0.01
CVE-2024-25139 CRITICAL
TP-Link Omada er605 <2.2.3 - Code Injection
Mar 14, 2024
CVSS 10.0
EPSS 0.01
CVE-2024-2188 MEDIUM
TP-Link Archer AX50 -1.0.11 build 2022052 - XSS
Mar 05, 2024
CVSS 6.1
EPSS 0.01
CVE-2024-21833 HIGH
TP-LINK Archer AX3000/AX5400/AXE75/Deco X50/XE200 Firmware - Unauthenticated OS Command Injection
Jan 11, 2024
CVSS 8.8
EPSS 0.01
CVE-2024-21821 HIGH
TP-LINK Archer AX3000/AX5400/AXE75 Firmware < 1.1.2/1.1.9 - Authenticated OS Command Injection
Jan 11, 2024
CVSS 8.0
EPSS 0.00
CVE-2024-21773 HIGH
TP-LINK Archer AX3000, AX5400, Deco X50, XE200 - Unauthenticated OS Command Injection
Jan 11, 2024
CVSS 8.8
EPSS 0.01
CVE-2023-50225 MEDIUM
TP-Link TL-WR902AC Firmware - Authenticated Stack-based Buffer Overflow in libcmm.so
May 03, 2024
CVSS 6.8
EPSS 0.01
CVE-2023-50224 MEDIUM KEV
TP-Link TL-WR841N Firmware - Unauthenticated Authentication Bypass via HTTPD Service
May 03, 2024
CVSS 6.5
EPSS 0.17
CVE-2023-44448 MEDIUM
TP-Link Archer A54 Firmware - Authenticated Stack-based Buffer Overflow in libcmm.so
May 03, 2024
CVSS 6.8
EPSS 0.01
CVE-2023-44447 MEDIUM
TP-Link TL-WR902AC Firmware - Unauthenticated Authentication Bypass via httpd Service
May 03, 2024
CVSS 6.5
EPSS 0.01
CVE-2023-41184 HIGH
TP-Link Tapo C210 Firmware - Stack-based Buffer Overflow via ActiveCells Parameter
May 03, 2024
CVSS 8.0
EPSS 0.01
CVE-2023-39471 HIGH
TP-Link TL-WR841N/TL-WR840N <231119/231121 - Unauthenticated OS Command Injection
May 03, 2024
CVSS 8.8
EPSS 0.01
CVE-2023-35717 HIGH
TP-Link Tapo C210 Firmware - Authentication Bypass via Weak Password Derivation
May 03, 2024
CVSS 8.8
EPSS 0.01
CVE-2023-27359 HIGH
TP-Link Archer AX21 Firmware - Unauthenticated Firewall Rule Race Condition in hotplugd
May 03, 2024
CVSS 8.1
EPSS 0.01
CVE-2023-27346 HIGH
TP-Link Archer AX21 Firmware - Stack-based Buffer Overflow via Firmware Image Parsing
May 03, 2024
CVSS 8.8
EPSS 0.01
CVE-2023-27333 MEDIUM
TP-Link Archer AX21 Firmware - Authenticated Stack-based Buffer Overflow in tmpServer Command 0x422
May 03, 2024
CVSS 6.8
EPSS 0.01