cbcvebase.
CVE-2023-48724
published 2024-04-09

CVE-2023-48724: A memory corruption vulnerability exists in the web interface functionality of Tp-Link AC1350 Wireless MU-MIMO Gigabit Access Point (EAP225 V3) v5.1.0 Build…

PriorityP343high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
EPSS
1.48%
70.8th percentile
A memory corruption vulnerability exists in the web interface functionality of Tp-Link AC1350 Wireless MU-MIMO Gigabit Access Point (EAP225 V3) v5.1.0 Build 20220926. A specially crafted HTTP POST request can lead to denial of service of the device's web interface. An attacker can send an unauthenticated HTTP POST request to trigger this vulnerability.

Affected

2 ranges
VendorProductVersion rangeFixed in
tp-linkac1350_wireless_mu-mimo_gigabit_access_point
tp-linkeap225_firmware
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.