CRITICAL🇵🇱 Wersja polska

CVE-2018-12575

CVSS 9.8v3.0pub. 2018-07-02upd. 2024-11-21

On TP-Link TL-WR841N v13 00000001 0.9.1 4.16 v0001.0 Build 171019 Rel.55346n devices, all actions in the web interface are affected by bypass of authentication via an HTTP request.

CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Tp Link Tl Wr841n

    HW
    Tp-Link
    13.0
  • Tp Link Tl Wr841n Firmware

    OS
    Tp-Link
    0.9.1_4.16
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Auth Bypass
CWE
References

Related vulnerabilities

CVE-2022-25073CRITICAL9.8ten sam produkt

TL-WR841Nv14_US_0.9.1_4.18 routers were discovered to contain a stack overflow in the function dm_fillObjByStr...

CVE-2018-11714CRITICAL9.8ten sam produkt

An issue was discovered on TP-Link TL-WR840N v5 00000005 0.9.1 3.16 v0001.0 Build 170608 Rel.58696n and TL-WR8...

CVE-2025-9377HIGH8.6⚠ KEVten sam produkt

The authenticated remote command execution (RCE) vulnerability exists in the Parental Control page on TP-Link...

CVE-2023-33538HIGH8.8⚠ KEVten sam produkt

TP-Link TL-WR940N V2/V4, TL-WR841N V8/V10, and TL-WR740N V1/V2 was discovered to contain a command injection v...

CVE-2015-3035HIGH7.5⚠ KEVten sam produkt

Directory traversal vulnerability in TP-LINK Archer C5 (1.2) with firmware before 150317, C7 (2.0) with firmwa...