CVE-2024-12342

MEDIUM

TP-Link VN020 F3v(T) TT_V6.2.1021 - DoS

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2024-12342. PoCs published by Mohamed Maatallah, becrevex.

AI-analyzed exploit summary This exploit demonstrates two DoS vulnerabilities in TP-Link VN020-F3v(T) router's UPnP service via malformed SOAP requests. The first PoC triggers a DoS by omitting required parameters, while the second causes potential memory corruption with an oversized payload.

Description

A vulnerability was found in TP-Link VN020 F3v(T) TT_V6.2.1021. It has been rated as critical. This issue affects some unknown processing of the file /control/WANIPConnection of the component Incomplete SOAP Request Handler. The manipulation leads to denial of service. The attack can only be initiated within the local network. The exploit has been disclosed to the public and may be used.

Exploits (2)

exploitdb WORKING POC

by Mohamed Maatallah · textremotemultiple

https://www.exploit-db.com/exploits/52250

View Code ZIP pw:eip

This exploit demonstrates two DoS vulnerabilities in TP-Link VN020-F3v(T) router's UPnP service via malformed SOAP requests. The first PoC triggers a DoS by omitting required parameters, while the second causes potential memory corruption with an oversized payload.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: TP-Link VN020-F3v(T) Router (TT_V6.2.1021)

No auth needed

Prerequisites: Network access to the router's UPnP service (port 5431)

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

nomisec WORKING POC

by becrevex · poc

https://github.com/becrevex/TPLink-VN020-DoS

View Code ZIP pw:eip

The repository contains functional exploit code for a Denial of Service (DoS) vulnerability in TP-Link VN020-F3v devices via a malformed SOAP request. The exploit sends a crafted XML payload with an excessively long hex string to trigger the vulnerability.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: TP-Link VN020-F3v

No auth needed

Prerequisites: Network access to the target device · UPnP service exposed on the target

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (4)

Core 4

Core References

Permissions Required, VDB Entry vdb-entry

https://vuldb.com/?id.287261

Permissions Required, VDB Entry signature permissions-required

https://vuldb.com/?ctiid.287261

Various Sources exploit

https://github.com/Zephkek/TP-WANPunch/blob/main/README.md

View Writeup ZIP pw:eip

Various Sources product

https://www.tp-link.com/

Scores

CVSS v3 6.5

EPSS 0.1221

EPSS Percentile 94.0%

Attack Vector ADJACENT_NETWORK

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-404

Status published

Products (1)

TP-Link/VN020 F3v(T) TT_V6.2.1021

Published Dec 08, 2024

Tracked Since Feb 18, 2026