CVE-2023-36355

CRITICAL

TP-Link TL-WR940N V4 - Buffer Overflow

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2023-36355. PoCs published by Amirhossein Bahramizadeh.

AI-analyzed exploit summary This exploit triggers a buffer overflow in TP-Link TL-WR940N V4 routers via a crafted GET request to the WanDynamicIpV6CfgRpm endpoint. The payload consists of a long string of 'A' characters to overflow the buffer.

Description

TP-Link TL-WR940N V4 was discovered to contain a buffer overflow via the ipStart parameter at /userRpm/WanDynamicIpV6CfgRpm. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted GET request.

Exploits (1)

exploitdb WORKING POC
by Amirhossein Bahramizadeh · pythondoshardware
https://www.exploit-db.com/exploits/51561

This exploit triggers a buffer overflow in TP-Link TL-WR940N V4 routers via a crafted GET request to the WanDynamicIpV6CfgRpm endpoint. The payload consists of a long string of 'A' characters to overflow the buffer.

Classification
Working Poc 80%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: TP-Link TL-WR940N V4
No auth needed
Prerequisites: Network access to the router's web interface
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Scores

CVSS v3 9.9
EPSS 0.2258
EPSS Percentile 97.4%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-120
Status published
Products (1)
tp-link/tl-wr940n_firmware
Published Jun 22, 2023
Tracked Since Feb 18, 2026