Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tp-link vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-2578
cgi-bin/admin/servetest in TP-Link IP Cameras TL-SC3130, TL-SC3130G, TL-SC3171, TL-SC3171G, and possibly other models before beta firmware LM.1.6.18P12_sign6 allows remote malicious users to execute arbitrary commands via shell metacharacters in (1) the ServerName parameter and (...
Tp-link Tl-sc3130 -
Tp-link Tl-sc3130g -
Tp-link Tl-sc3171 -
Tp-link Tl-sc3171g -
Tp-link Lm Firmware
1 EDB exploit
NA
CVE-2013-2581
cgi-bin/firmwareupgrade in TP-Link IP Cameras TL-SC3130, TL-SC3130G, TL-SC3171, TL-SC3171G, and possibly other models before beta firmware LM.1.6.18P12_sign6 allows remote malicious users to modify the firmware revision via a "preset" action.
Tp-link Tl-sc3130 -
Tp-link Tl-sc3130g -
Tp-link Tl-sc3171 -
Tp-link Tl-sc3171g -
Tp-link Lm Firmware
1 EDB exploit
NA
CVE-2013-2579
TP-Link IP Cameras TL-SC3130, TL-SC3130G, TL-SC3171, TL-SC3171G, and possibly other models before beta firmware LM.1.6.18P12_sign6 have an empty password for the hardcoded "qmik" account, which allows remote malicious users to obtain administrative access via a TELNET s...
Tp-link Tl-sc3130 -
Tp-link Tl-sc3130g -
Tp-link Tl-sc3171 -
Tp-link Tl-sc3171g -
Tp-link Lm Firmware
1 EDB exploit
NA
CVE-2013-3688
The TP-Link IP Cameras TL-SC3171, TL-SC3130, TL-SC3130G, TL-SC3171G, and possibly other models before beta firmware LM.1.6.18P12_sign6, does not properly restrict access to certain administrative functions, which allows remote malicious users to (1) cause a denial of service (dev...
Tp-link Tl-sc3130 -
Tp-link Tl-sc3130g -
Tp-link Tl-sc3171 -
Tp-link Tl-sc3171g -
Tp-link Lm Firmware
NA
CVE-2015-3035
Directory traversal vulnerability in TP-LINK Archer C5 (1.2) with firmware prior to 150317, C7 (2.0) with firmware prior to 150304, and C8 (1.0) with firmware prior to 150316, Archer C9 (1.0), TL-WDR3500 (1.0), TL-WDR3600 (1.0), and TL-WDR4300 (1.0) with firmware prior to 150302,...
Tp-link Tl-wr841n (9.0) Firmware
Tp-link Tl-wr740n (5.0) Firmware
Tp-link Archer C5 (1.2) Firmware
Tp-link Tl-wr841n (10.0) Firmware
Tp-link Tl-wr741nd (5.0) Firmware
Tp-link Tl-wr741nd (5.0)
Tp-link Tl-wdr3600 (1.0) Firmware
Tp-link Archer C7 (2.0) Firmware
Tp-link Tl-wr841nd (10.0) Firmware 150104
Tp-link Archer C9 (1.0) Firmware
Tp-link Tl-wr841nd (9.0) Firmware
Tp-link Archer C8 (1.0) Firmware
Tp-link Tl-wdr4300 (1.0) Firmware
Tp-link Tl-wdr3500 (1.0) Firmware
7.5
CVSSv3
CVE-2021-3125
In TP-Link TL-XDR3230 < 1.0.12, TL-XDR1850 < 1.0.9, TL-XDR1860 < 1.0.14, TL-XDR3250 < 1.0.2, TL-XDR6060 Turbo < 1.1.8, TL-XDR5430 < 1.0.11, and possibly others, when IPv6 is used, a routing loop can occur that generates excessive network traffic between an affec...
Tp-link Tl-xdr3230 Firmware
Tp-link Tl-xdr5430 Firmware
Tp-link Tl-xdr3250 Firmware
Tp-link Tl-xdr1860 Firmware
Tp-link Tl-xdr1850 Firmware
Tp-link Tl-xdr6060 Firmware
8.8
CVSSv3
CVE-2019-6487
TP-Link WDR Series devices through firmware v3 (such as TL-WDR5620 V3.0) are affected by command injection (after login) leading to remote code execution, because shell metacharacters can be included in the weather get_weather_observe citycode field.
Tp-link Tl-wdr5620 Firmware
Tp-link Tl-wdr3500 Firmware
Tp-link Tl-wdr3600 Firmware
Tp-link Tl-wdr4300 Firmware
Tp-link Tl-wdr4900 Firmware
8.8
CVSSv3
CVE-2024-21833
Multiple TP-LINK products allow a network-adjacent unauthenticated attacker with access to the product to execute arbitrary OS commands. Affected products/versions are as follows: Archer AX3000 firmware versions prior to "Archer AX3000(JP)_V1_1.1.2 Build 20231115", Arch...
Tp-link Archer Ax3000 Firmware
Tp-link Archer Ax5400 Firmware
Tp-link Deco X50 Firmware
Tp-link Deco Xe200 Firmware
Tp-link Archer Axe75 Firmware
7.5
CVSSv3
CVE-2016-1000009
TP-LINK lost control of two domains, www.tplinklogin.net and tplinkextender.net. Please note that these domains are physically printed on many of the devices.
Tp-link Tp-link -
7.5
CVSSv3
CVE-2023-36354
TP-Link TL-WR940N V4, TL-WR841N V8/V10, TL-WR740N V1/V2, TL-WR940N V2/V3, and TL-WR941ND V5/V6 were discovered to contain a buffer overflow in the component /userRpm/AccessCtrlTimeSchedRpm. This vulnerability allows malicious users to cause a Denial of Service (DoS) via a crafted...
Tp-link Tl-wr940n Firmware -
Tp-link Tl-wr841n Firmware -
Tp-link Tl-wr740n Firmware -
Tp-link Tl-wr941nd Firmware -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »