This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of TP-Link TL-WR940N routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the httpd service, which listens on TCP port 80 by default. The issue results from the lack of sufficient randomness in the sequnce numbers used for session managment. An attacker can leverage this vulnerability to bypass authentication on the system.
Affected Software | Affected Version | How to fix |
---|---|---|
TP-Link TL-WR940N V2 Firmware |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of ZDI-CAN-18334 is critical due to its ability to allow network-adjacent attackers to bypass authentication.
To fix ZDI-CAN-18334, update the firmware of the TP-Link TL-WR940N router to the latest version provided by TP-Link.
ZDI-CAN-18334 allows unauthorized access to the TP-Link TL-WR940N router, potentially compromising network security.
Users of the TP-Link TL-WR940N routers are affected by ZDI-CAN-18334 due to the authentication bypass vulnerability.
No, authentication is not required to exploit ZDI-CAN-18334, making it particularly dangerous.