CVE-2022-48194

HIGH

Tp-link Tl-wr902ac Firmware < 3.0.9.1 - Unrestricted File Upload

Title source: rule

Description

TP-Link TL-WR902AC devices through V3 0.9.1 allow remote authenticated attackers to execute arbitrary code or cause a Denial of Service (DoS) by uploading a crafted firmware update because the signature check is inadequate.

Exploits (2)

exploitdb WORKING POC

by Tobias Müller · pythonremotehardware

https://www.exploit-db.com/exploits/51192

View Code ZIP pw:eip

nomisec WORKING POC 19 stars

by otsmr · poc

https://github.com/otsmr/internet-of-vulnerable-things

View Code ZIP pw:eip

References (2)

[Exploit, Third Party Advisory] https://github.com/otsmr/internet-of-vulnerable-things/tree/main/exploits

[Exploit, Third Party Advisory] http://packetstormsecurity.com/files/171623/TP-Link-TL-WR902AC-Remote-Code-Execution.html

Scores

CVSS v3 8.8

EPSS 0.5555

EPSS Percentile 98.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-434

Status published

Products (1)

tp-link/tl-wr902ac_firmware < 3.0.9.1

Published Dec 30, 2022

Tracked Since Feb 18, 2026