First published: Fri Feb 25 2022(Updated: )
TP-LINK TL-WR840N(ES)_V6.20_180709 was discovered to contain a remote code execution (RCE) vulnerability via the function oal_wan6_setIpAddr.
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Tp-link Tl-wr840n Firmware | =6.20_180709 | |
TP-LINK TL-WR840N |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2022-25064 is a remote code execution (RCE) vulnerability discovered in TP-LINK TL-WR840N(ES)_V6.20_180709 firmware.
CVE-2022-25064 has a severity rating of 9.8, which is considered critical.
The affected software of CVE-2022-25064 is TP-LINK TL-WR840N(ES)_V6.20_180709 firmware.
The CWE (Common Weakness Enumeration) for CVE-2022-25064 is CWE-78, which refers to Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection').
Yes, TP-LINK TL-WR840N is vulnerable to CVE-2022-25064.