An exploitable firmware modification vulnerability was discovered on TP-Link TL-WR743ND V1. An attacker can conduct a MITM (Man-in-the-Middle) attack to modify the user-uploaded firmware image and bypass the CRC check, allowing attackers to execute arbitrary code or cause a Denial of Service (DoS). This affects v3.12.20 and earlier.
References
Link | Resource |
---|---|
https://hackmd.io/%40slASVrz_SrW7NQCsunofeA/B1Vgv1uwo | |
https://www.tp-link.com/us/press/security-advisory/ | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
07 Nov 2023, 03:55
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Information
Published : 2022-12-20 20:15
Updated : 2024-02-28 19:51
NVD link : CVE-2022-46432
Mitre link : CVE-2022-46432
CVE.ORG link : CVE-2022-46432
JSON object : View
Products Affected
tp-link
- tl-wr743nd_v1
- tl-wr743nd_v1_firmware
CWE