Tp-Link Tl-Wr849N Firmware vulnerabilities
2 known vulnerabilities affecting tp-link/tl-wr849n_firmware.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
1
Severity breakdown
CRITICAL1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2020-9374P1CRITICALCVSS 9.8ExploitedPoCv0.9.1_4.162020-02-24
CVE-2020-9374 [CRITICAL] CWE-78 CVE-2020-9374: On TP-Link TL-WR849N 0.9.1 4.16 devices, a remote command execution vulnerability in the diagnostics
On TP-Link TL-WR849N 0.9.1 4.16 devices, a remote command execution vulnerability in the diagnostics area can be exploited when an attacker sends specific shell metacharacters to the panel's traceroute feature.
nvd
CVE-2019-19143P3MEDIUMCVSS 6.1PoCv0.9.1_4.162020-01-27
CVE-2019-19143 [MEDIUM] CWE-306 CVE-2019-19143: TP-LINK TL-WR849N 0.9.1 4.16 devices do not require authentication to replace the firmware via a POS
TP-LINK TL-WR849N 0.9.1 4.16 devices do not require authentication to replace the firmware via a POST request to the cgi/softup URI.
nvd