Tp-Link Systems Inc Tl-Wr841N V14 vulnerabilities
4 known vulnerabilities affecting tp-link_systems_inc/tl-wr841n_v14.
Total CVEs
4
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2025-9014P3HIGHCVSS 7.5fixed in 2509082026-01-15
CVE-2025-9014 [HIGH] CWE-20 CVE-2025-9014: A Null Pointer Dereference vulnerability exists in the referer header check of the web portal of TP-
A Null Pointer Dereference vulnerability exists in the referer header check of the web portal of TP-Link TL-WR841N v14, caused by improper input validation. A remote, unauthenticated attacker can exploit this flaw and cause Denial of Service on the web portal service.This issue affects TL-WR841N v14: before 250908.
nvd
CVE-2026-3622P3HIGHCVSS 7.5fixed in 0.9.1 4.192026-03-26
CVE-2026-3622 [HIGH] CWE-125 CVE-2026-3622: The vulnerability exists in the UPnP component of TL-WR841N v14, where improper input validation lea
The vulnerability exists in the UPnP component of TL-WR841N v14, where improper input validation leads to an out-of-bounds read, potentially causing a crash of the UPnP service.
Successful exploitation can cause the UPnP service to crash, resulting in a Denial-of-Service condition.
This vulnerability affects TL-WR841N v14 < EN_0.9.1 4.19 Build 260303 R
nvd
CVE-2026-3227P3MEDIUMCVSS 6.8fixed in V14_2603032026-03-16
CVE-2026-3227 [MEDIUM] CWE-78 CVE-2026-3227: A command injection vulnerability was identified in TP-Link TL-WR802N v4, TL-WR841N v14, and TL-WR84
A command injection vulnerability was identified in TP-Link TL-WR802N v4, TL-WR841N v14, and TL-WR840N v6 due to improper neutralization of special elements used in an OS command. In the router configuration import function allows an authenticated attacker to upload a crafted configuration file that results in execution of OS commands with root privile
nvd
CVE-2026-9105P4MEDIUMCVSS 6.8fixed in V14_2605182026-06-29
CVE-2026-9105 [MEDIUM] CWE-121 CVE-2026-9105: An authenticated stack-based buffer overflow vulnerability exists in the web management interface of
An authenticated stack-based buffer overflow vulnerability exists in the web management interface of TP-Link TL-WR841N v14. A remote authenticated attacker can send crafted HTTP requests to cause the embedded web server to overflow a stack buffer, resulting in a crash of the affected process.
Successful exploitation results in a denial-of-service con
nvd