CVE-2023-23040
HIGHTP-Link TL-WR940N V6 3.19.1 Build 180119 - Use of Weak MD5 Password Hashing
Title source: llmDescription
TP-Link router TL-WR940N V6 3.19.1 Build 180119 uses a deprecated MD5 algorithm to hash the admin password used for basic authentication.
References (2)
Core 2
Core References
Patch, Third Party Advisory
https://midist0xf.medium.com/tl-wr940n-uses-weak-md5-hashing-algorithm-ae7b589860d2
Scores
CVSS v3
7.5
EPSS
0.0015
EPSS Percentile
35.3%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
yes
Technical Impact
partial
Details
CWE
CWE-327
Status
published
Products (1)
tp-link/tl-wr940n_firmware
6_3.19.1 180119
Published
Feb 22, 2023
Tracked Since
Feb 18, 2026