CVE-2022-41540

MEDIUM

TP-Link AX10v1 V1_211117 - Info Disclosure

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2022-41540. PoCs published by efchatz.

AI-analyzed exploit summary The repository contains a collection of exploit scripts for various CVEs, including CVE-2022-41540. The exploits are primarily HTTP-based attacks targeting vulnerabilities in ASUS, D-Link, Netgear, and TP-Link devices.

Description

The web app client of TP-Link AX10v1 V1_211117 uses hard-coded cryptographic keys when communicating with the router. Attackers who are able to intercept the communications between the web client and router through a man-in-the-middle attack can then obtain the sequence key via a brute-force attack, and access sensitive information.

Exploits (1)

nomisec WORKING POC 17 stars
by efchatz · poc
https://github.com/efchatz/easy-exploits

The repository contains a collection of exploit scripts for various CVEs, including CVE-2022-41540. The exploits are primarily HTTP-based attacks targeting vulnerabilities in ASUS, D-Link, Netgear, and TP-Link devices.

Classification
Working Poc 90%
Attack Type
Auth Bypass
Complexity
Moderate
Reliability
Reliable
Target: ASUS RT-AX88U (and other affected devices)
No auth needed
Prerequisites: Network access to the target device · Curl or similar HTTP client
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Scores

CVSS v3 5.9
EPSS 0.0108
EPSS Percentile 60.9%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact partial

Details

CWE
CWE-798
Status published
Products (1)
tp-link/ax10_firmware v1_211117
Published Oct 18, 2022
Tracked Since Feb 18, 2026