CVE-2022-25073
CRITICAL9.8CVSS v3
10.0CVSS v2
5.38%
EPSS (exploit probability)
CWE-787CWE
Description
TL-WR841Nv14_US_0.9.1_4.18 routers were discovered to contain a stack overflow in the function dm_fillObjByStr(). This vulnerability allows unauthenticated attackers to execute arbitrary code.
CVSS v3 vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected routers (1)
| Vendor | Model | Matched via | Affected versions | Fixed in | Patch? |
|---|---|---|---|---|---|
| TP-Link | TP-Link TL-WR841N | — |
— | — | No |