CVE-2023-33538
HIGH8.8CVSS v3
—CVSS v2
90.57%
EPSS (exploit probability)
CWE-77CWE
Description
TP-Link TL-WR940N V2/V4, TL-WR841N V8/V10, and TL-WR740N V1/V2 was discovered to contain a command injection vulnerability via the component /userRpm/WlanNetworkRpm .
CVSS v3 vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected routers (1)
| Vendor | Model | Matched via | Affected versions | Fixed in | Patch Status |
|---|---|---|---|---|---|
| TP-Link | TP-Link TL-WR841N | — |
— | — | Unpatched |