First published: Thu Sep 13 2018(Updated: )
An issue was discovered on TP-Link TL-WR886N 6.0 2.3.4 and TL-WR886N 7.0 1.1.0 devices. Authenticated attackers can crash router services (e.g., inetd, HTTP, DNS, and UPnP) via long JSON data for wireless wlan_wds_2g ssid.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Tp-link Tl-wr886n Firmware | =6.0_2.3.4 | |
Tp-link Tl-wr886n Firmware | =7.0_1.1.0 | |
TP-Link TL-WR886N |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2018-17007 is a vulnerability found on TP-Link TL-WR886N routers that allows authenticated attackers to crash router services using long JSON data for wireless SSID.
TP-Link TL-WR886N 6.0 2.3.4 and TL-WR886N 7.0 1.1.0 devices are affected by CVE-2018-17007.
CVE-2018-17007 has a severity score of 6.5, which is considered medium severity.
Authenticated attackers can exploit CVE-2018-17007 by sending long JSON data for the wireless SSID, crashing router services.
At the moment, there is no known fix or patch for CVE-2018-17007. It is recommended to update to the latest firmware version when available.