HIGH🚩 CISA KEV⚡ EXPLOIT🇵🇱 Wersja polska

CVE-2023-33538

CVSS 8.8v3.1pub. 2023-06-07upd. 2025-10-27

TP-Link TL-WR940N V2/V4, TL-WR841N V8/V10, and TL-WR740N V1/V2 was discovered to contain a command injection vulnerability via the component /userRpm/WlanNetworkRpm .

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
  • Tp Link Tl Wr740n

    HW
    Tp-Link
    1.02.0
  • Tp Link Tl Wr740n Firmware

    OS
    Tp-Link
    wszystkie wersje
  • Tp Link Tl Wr841n

    HW
    Tp-Link
    10.08.0
  • Tp Link Tl Wr841n Firmware

    OS
    Tp-Link
    wszystkie wersje
  • Tp Link Tl Wr940n

    HW
    Tp-Link
    2.04.0
  • Tp Link Tl Wr940n Firmware

    OS
    Tp-Link
    wszystkie wersje

CISA KEV — detailsi

Vendori
TP-Link
Producti
Multiple Routers
Added to KEVi
June 16, 2025
Remediation deadline (US Federal)i
July 7, 2025(overdue)
Required action (CISA)i

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

CISA descriptioni

TP-Link TL-WR940N V2/V4, TL-WR841N V8/V10, and TL-WR740N V1/V2 contain a command injection vulnerability via the component /userRpm/WlanNetworkRpm. The impacted products could be end-of-life (EoL) and/or end-of-service (EoS). Users should discontinue product utilization.

🔴
IMMEDIATE ACTION
Actively exploited in the wild (CISA KEV). Patch immediately.
CISA DEADLINE: 7 lipca 2025
CWE
References

Related vulnerabilities

CVE-2023-36355CRITICAL9.9ten sam produkt

TP-Link TL-WR940N V4 was discovered to contain a buffer overflow via the ipStart parameter at /userRpm/WanDyna...

CVE-2022-25073CRITICAL9.8ten sam produkt

TL-WR841Nv14_US_0.9.1_4.18 routers were discovered to contain a stack overflow in the function dm_fillObjByStr...

CVE-2018-12575CRITICAL9.8ten sam produkt

On TP-Link TL-WR841N v13 00000001 0.9.1 4.16 v0001.0 Build 171019 Rel.55346n devices, all actions in the web i...

CVE-2018-11714CRITICAL9.8ten sam produkt

An issue was discovered on TP-Link TL-WR840N v5 00000005 0.9.1 3.16 v0001.0 Build 170608 Rel.58696n and TL-WR8...

CVE-2025-9377HIGH8.6⚠ KEVten sam produkt

The authenticated remote command execution (RCE) vulnerability exists in the Parental Control page on TP-Link...