CVE-2023-46371

CRITICAL

TP-Link TL-WDR7660 <2.0.30 & TL-WR886N <2.0.12 - Buffer Overflow

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2023-46371. PoCs published by Jianchun-Ding.

AI-analyzed exploit summary The repository contains functional exploit code for CVE-2023-46371 and CVE-2023-46527, targeting stack overflow vulnerabilities in TP-Link devices via crafted HTTP requests to the cloud_config endpoint. The PoCs demonstrate DoS conditions by sending oversized payloads to trigger buffer overflows.

Description

TP-Link device TL-WDR7660 2.0.30 and TL-WR886N 2.0.12 has a stack overflow vulnerability via the function upgradeInfoJsonToBin.

Exploits (1)

nomisec WORKING POC

by Jianchun-Ding · poc

https://github.com/Jianchun-Ding/CVE-poc-update

View Code ZIP pw:eip

The repository contains functional exploit code for CVE-2023-46371 and CVE-2023-46527, targeting stack overflow vulnerabilities in TP-Link devices via crafted HTTP requests to the cloud_config endpoint. The PoCs demonstrate DoS conditions by sending oversized payloads to trigger buffer overflows.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: TP-Link TL-WDR7660 2.0.30, TL-WR886N 2.0.12, TL-WR886N V7.0_3.0.14

No auth needed

Prerequisites: Network access to the vulnerable device

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (2)

Core 2

Core References

Various Sources

https://github.com/Jianchun-Ding/CVE-poc-update

Exploit, Third Party Advisory

https://github.com/Archerber/bug_submit/blob/main/TP-Link/TL-WDR7660/2.md

Scores

CVSS v3 9.8

EPSS 0.0112

EPSS Percentile 62.0%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable yes

Technical Impact total

Details

CWE

CWE-787

Status published

Products (1)

tp-link/tl-wdr7660_firmware 2.0.30

Published Oct 25, 2023

Tracked Since Feb 18, 2026