CVE-2020-9374

CRITICAL EXPLOITED

Tp-link Tl-wr849n Firmware - OS Command Injection

Title source: rule

Description

On TP-Link TL-WR849N 0.9.1 4.16 devices, a remote command execution vulnerability in the diagnostics area can be exploited when an attacker sends specific shell metacharacters to the panel's traceroute feature.

Exploits (1)

exploitdb WORKING POC

by Elber Tavares · pythonwebappshardware

https://www.exploit-db.com/exploits/48155

View Code ZIP pw:eip

References (3)

[Exploit, Third Party Advisory, VDB Entry] http://packetstormsecurity.com/files/156584/TP-Link-TL-WR849N-Remote-Code-Execution.html

[Exploit, Third Party Advisory] https://fireshellsecurity.team/hack-n-routers/

[Exploit, Third Party Advisory] https://github.com/ElberTavares/routers-exploit/tree/master/tp-link

Scores

CVSS v3 9.8

EPSS 0.8731

EPSS Percentile 99.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

VulnCheck KEV 2026-03-23

CWE

CWE-78

Status published

Products (1)

tp-link/tl-wr849n_firmware 0.9.1_4.16

Published Feb 24, 2020

Tracked Since Feb 18, 2026