CVE-2022-0162

The vulnerability exists in TP-Link TL-WR841N V11 3.16.9 Build 160325 Rel.62500n wireless router due to transmission of authentication information in cleartextbase64 format. Successful exploitation of this vulnerability could allow a remote attacker to intercept credentials and subsequently perform administrative operations on the affected device through web-based management interface.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:tp-link:tl-wr841n_firmware:3.16.9:build160325_rel.62500n:*:*:*:*:*:*
cpe:2.3:h:tp-link:tl-wr841n:11:*:*:*:*:*:*:*

History

21 Nov 2024, 06:38

Type Values Removed Values Added
CVSS v2 : 7.5
v3 : 9.8
v2 : 7.5
v3 : 8.4
References () https://www.cert-in.org.in/s2cMainServlet?pageid=PUBVLNOTES01&VLCODE=CIVN-2022-0068 - Third Party Advisory () https://www.cert-in.org.in/s2cMainServlet?pageid=PUBVLNOTES01&VLCODE=CIVN-2022-0068 - Third Party Advisory

Information

Published : 2022-02-09 23:15

Updated : 2024-11-21 06:38


NVD link : CVE-2022-0162

Mitre link : CVE-2022-0162

CVE.ORG link : CVE-2022-0162


JSON object : View

Products Affected

tp-link

  • tl-wr841n
  • tl-wr841n_firmware
CWE
CWE-319

Cleartext Transmission of Sensitive Information