exploitDog

GHSA-56f7-mw56-5449

Опубликовано: 22 июн. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 7.7

Описание

TP-Link TL-WR940N V2/V4/V6, TL-WR841N V8, TL-WR941ND V5, and TL-WR740N V1/V2 were discovered to contain a buffer read out-of-bounds via the component /userRpm/VirtualServerRpm. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted GET request.

TP-Link TL-WR940N V2/V4/V6, TL-WR841N V8, TL-WR941ND V5, and TL-WR740N V1/V2 were discovered to contain a buffer read out-of-bounds via the component /userRpm/VirtualServerRpm. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted GET request.

Ссылки

EPSS

Процентиль: 21%

0.00068

Низкий

7.7 High

CVSS3

CVE ID

Дефекты

CWE-125

Связанные уязвимости

CVE-2023-36356

CVSS3: 7.7

nvd

больше 2 лет назад

TP-Link TL-WR940N V2/V4/V6, TL-WR841N V8, TL-WR941ND V5, and TL-WR740N V1/V2 were discovered to contain a buffer read out-of-bounds via the component /userRpm/VirtualServerRpm. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted GET request.

BDU:2023-03611

CVSS3: 8.6

fstec

больше 2 лет назад

Уязвимость компонента VirtualServerRpm (/userRpm/VirtualServerRpm.htm) микропрограммного обеспечения маршрутизаторов TP-Link TL-WR940N, TL-WR841N, TL-WR941ND и TL-WR740N, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 21%

0.00068

Низкий

7.7 High

CVSS3

CVE ID

Дефекты

CWE-125