Skip to main content

TP-Link Router Multiple Vulnerabilities

Last Update Date: 11 Jun 2019 10:55 Release Date: 11 Jun 2019 4352 Views

RISK: High Risk

TYPE: Operating Systems - Networks OS

TYPE: Networks OS

Multiple vulnerabilities were identified in TP-Link Router, a remote authenticated attacker could exploit some of these vulnerabilities to trigger elevation of privilege, denial of service, remote code execution and sensitive information disclosure on the targeted system.


Impact

  • Denial of Service
  • Elevation of Privilege
  • Remote Code Execution
  • Information Disclosure

System / Technologies affected

  • TP-Link TL-WR940N
  • TP-Link TL-WR941ND

Solutions

Notes: No patch is currently available.


Workaround:
1. Disable WAN access to administrative web interface; or only allow access from trusted IP addresses. 

2. Only allow trusted MAC address access administrative web interface in LAN.


Vulnerability Identifier


Source


Related Link