TL-WR845N(UN)_V4_201214, TP-Link TL-WR845N(UN)_V4_200909, and TL-WR845N(UN)_V4_190219 was discovered to transmit user credentials in plaintext after executing a factory reset.
After performing a factory reset to default settings, the device transmits user authentication data (e.g., passwords) in plaintext over the network without any encryption. An attacker capable of monitoring network traffic in the same network segment or on the transmission path can intercept this data without any additional privileges or user interaction. This is inconsistent with security best practices classified as CWE-312 (storage/transmission of sensitive data in unencrypted form).
An attacker can intercept user authentication data (login and password), which consequently allows for taking full administrative control over the device and potentially over the local network behind it.
Apply patches available from the manufacturer according to the references. Temporarily, it is recommended to avoid performing factory reset of the device in untrusted network environments and to monitor network traffic for transmission of authentication data in plaintext.
TP-Link TL-WR845N(UN) firmware versions: V4_201214, V4_200909, and V4_190219
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HTp Link Tl Wr845n
HWTp-Linkv4Tp Link Tl Wr845n Firmware
OSTp-Link190219200909201214
Related vulnerabilities
TP-Link TL-WR845N — zakodowane na stałe hasło roota (hardcoded password)
TP-Link TL-WR845N(UN)_V4_190219 was discovered to transmit credentials in base64 encoded form, which can be ea...
TP-Link TL-WR845N(UN)_V4_201214, TL-WR845N(UN)_V4_200909 and TL-WR845N(UN)_V4_190219 were discovered to contai...
The response coming from TP-Link Archer MR200 v5.2, C20 v5 and v6, TL-WR850N v3, and TL-WR845N v4 for any requ...
Zdalne wykonanie poleceń OS bez uwierzytelnienia w routerach TP-Link Omada