CVE-2020-35575
Summary
| CVE | CVE-2020-35575 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2020-12-26 02:15:00 UTC |
| Updated | 2023-11-07 03:21:00 UTC |
| Description | A password-disclosure issue in the web interface on certain TP-Link devices allows a remote attacker to get full administrative access to the web panel. This affects WA901ND devices before 3.16.9(201211) beta, and Archer C5, Archer C7, MR3420, MR6400, WA701ND, WA801ND, WDR3500, WDR3600, WE843N, WR1043ND, WR1045ND, WR740N, WR741ND, WR749N, WR802N, WR840N, WR841HP, WR841N, WR842N, WR842ND, WR845N, WR940N, WR941HP, WR945N, WR949N, and WRD4300 devices. |
Risk And Classification
Problem Types: NVD-CWE-noinfo
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Tp-link | Archer C5 | - | All | All | All |
| Hardware | Tp-link | Archer C5 | - | All | All | All |
| Operating System | Tp-link | Archer C5 Firmware | - | All | All | All |
| Operating System | Tp-link | Archer C5 Firmware | - | All | All | All |
| Hardware | Tp-link | Archer C7 | - | All | All | All |
| Hardware | Tp-link | Archer C7 | - | All | All | All |
| Operating System | Tp-link | Archer C7 Firmware | - | All | All | All |
| Operating System | Tp-link | Archer C7 Firmware | - | All | All | All |
| Hardware | Tp-link | Mr3420 | - | All | All | All |
| Hardware | Tp-link | Mr3420 | - | All | All | All |
| Operating System | Tp-link | Mr3420 Firmware | - | All | All | All |
| Operating System | Tp-link | Mr3420 Firmware | - | All | All | All |
| Hardware | Tp-link | Mr6400 | - | All | All | All |
| Hardware | Tp-link | Mr6400 | - | All | All | All |
| Operating System | Tp-link | Mr6400 Firmware | - | All | All | All |
| Operating System | Tp-link | Mr6400 Firmware | - | All | All | All |
| Hardware | Tp-link | Wa701nd | - | All | All | All |
| Hardware | Tp-link | Wa701nd | - | All | All | All |
| Operating System | Tp-link | Wa701nd Firmware | - | All | All | All |
| Operating System | Tp-link | Wa701nd Firmware | - | All | All | All |
| Hardware | Tp-link | Wa801nd | - | All | All | All |
| Hardware | Tp-link | Wa801nd | - | All | All | All |
| Operating System | Tp-link | Wa801nd Firmware | - | All | All | All |
| Operating System | Tp-link | Wa801nd Firmware | - | All | All | All |
| Hardware | Tp-link | Wa901nd | - | All | All | All |
| Hardware | Tp-link | Wa901nd | - | All | All | All |
| Operating System | Tp-link | Wa901nd Firmware | All | All | All | All |
| Operating System | Tp-link | Wa901nd Firmware | All | All | All | All |
| Hardware | Tp-link | Wdr3500 | - | All | All | All |
| Hardware | Tp-link | Wdr3500 | - | All | All | All |
| Operating System | Tp-link | Wdr3500 Firmware | - | All | All | All |
| Operating System | Tp-link | Wdr3500 Firmware | - | All | All | All |
| Hardware | Tp-link | Wdr3600 | - | All | All | All |
| Hardware | Tp-link | Wdr3600 | - | All | All | All |
| Operating System | Tp-link | Wdr3600 Firmware | - | All | All | All |
| Operating System | Tp-link | Wdr3600 Firmware | - | All | All | All |
| Hardware | Tp-link | We843n | - | All | All | All |
| Hardware | Tp-link | We843n | - | All | All | All |
| Operating System | Tp-link | We843n Firmware | - | All | All | All |
| Operating System | Tp-link | We843n Firmware | - | All | All | All |
| Hardware | Tp-link | Wr1043nd | - | All | All | All |
| Hardware | Tp-link | Wr1043nd | - | All | All | All |
| Operating System | Tp-link | Wr1043nd Firmware | - | All | All | All |
| Operating System | Tp-link | Wr1043nd Firmware | - | All | All | All |
| Hardware | Tp-link | Wr1045nd | - | All | All | All |
| Hardware | Tp-link | Wr1045nd | - | All | All | All |
| Operating System | Tp-link | Wr1045nd Firmware | - | All | All | All |
| Operating System | Tp-link | Wr1045nd Firmware | - | All | All | All |
| Hardware | Tp-link | Wr740n | - | All | All | All |
| Hardware | Tp-link | Wr740n | - | All | All | All |
| Operating System | Tp-link | Wr740n Firmware | - | All | All | All |
| Operating System | Tp-link | Wr740n Firmware | - | All | All | All |
| Hardware | Tp-link | Wr741nd | - | All | All | All |
| Hardware | Tp-link | Wr741nd | - | All | All | All |
| Operating System | Tp-link | Wr741nd Firmware | - | All | All | All |
| Operating System | Tp-link | Wr741nd Firmware | - | All | All | All |
| Hardware | Tp-link | Wr749n | - | All | All | All |
| Hardware | Tp-link | Wr749n | - | All | All | All |
| Operating System | Tp-link | Wr749n Firmware | - | All | All | All |
| Operating System | Tp-link | Wr749n Firmware | - | All | All | All |
| Hardware | Tp-link | Wr802n | - | All | All | All |
| Hardware | Tp-link | Wr802n | - | All | All | All |
| Operating System | Tp-link | Wr802n Firmware | - | All | All | All |
| Operating System | Tp-link | Wr802n Firmware | - | All | All | All |
| Hardware | Tp-link | Wr840n | - | All | All | All |
| Hardware | Tp-link | Wr840n | - | All | All | All |
| Operating System | Tp-link | Wr840n Firmware | - | All | All | All |
| Operating System | Tp-link | Wr840n Firmware | - | All | All | All |
| Hardware | Tp-link | Wr841hp | - | All | All | All |
| Hardware | Tp-link | Wr841hp | - | All | All | All |
| Operating System | Tp-link | Wr841hp Firmware | - | All | All | All |
| Operating System | Tp-link | Wr841hp Firmware | - | All | All | All |
| Hardware | Tp-link | Wr841n | - | All | All | All |
| Hardware | Tp-link | Wr841n | - | All | All | All |
| Operating System | Tp-link | Wr841n Firmware | - | All | All | All |
| Operating System | Tp-link | Wr841n Firmware | - | All | All | All |
| Hardware | Tp-link | Wr842n | - | All | All | All |
| Hardware | Tp-link | Wr842n | - | All | All | All |
| Hardware | Tp-link | Wr842nd | - | All | All | All |
| Hardware | Tp-link | Wr842nd | - | All | All | All |
| Operating System | Tp-link | Wr842nd Firmware | - | All | All | All |
| Operating System | Tp-link | Wr842nd Firmware | - | All | All | All |
| Operating System | Tp-link | Wr842n Firmware | - | All | All | All |
| Operating System | Tp-link | Wr842n Firmware | - | All | All | All |
| Hardware | Tp-link | Wr845n | - | All | All | All |
| Hardware | Tp-link | Wr845n | - | All | All | All |
| Operating System | Tp-link | Wr845n Firmware | - | All | All | All |
| Operating System | Tp-link | Wr845n Firmware | - | All | All | All |
| Hardware | Tp-link | Wr940n | - | All | All | All |
| Hardware | Tp-link | Wr940n | - | All | All | All |
| Operating System | Tp-link | Wr940n Firmware | - | All | All | All |
| Operating System | Tp-link | Wr940n Firmware | - | All | All | All |
| Hardware | Tp-link | Wr941hp | - | All | All | All |
| Hardware | Tp-link | Wr941hp | - | All | All | All |
| Operating System | Tp-link | Wr941hp Firmware | - | All | All | All |
| Operating System | Tp-link | Wr941hp Firmware | - | All | All | All |
| Hardware | Tp-link | Wr945n | - | All | All | All |
| Hardware | Tp-link | Wr945n | - | All | All | All |
| Operating System | Tp-link | Wr945n Firmware | - | All | All | All |
| Operating System | Tp-link | Wr945n Firmware | - | All | All | All |
| Hardware | Tp-link | Wr949n | - | All | All | All |
| Hardware | Tp-link | Wr949n | - | All | All | All |
| Operating System | Tp-link | Wr949n Firmware | - | All | All | All |
| Operating System | Tp-link | Wr949n Firmware | - | All | All | All |
| Hardware | Tp-link | Wrd4300 | - | All | All | All |
| Hardware | Tp-link | Wrd4300 | - | All | All | All |
| Operating System | Tp-link | Wrd4300 Firmware | - | All | All | All |
| Operating System | Tp-link | Wrd4300 Firmware | - | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| > [Suggested description]> A password-disclosure issue> in the web interface - Pastebin.com | MISC | pastebin.com | Third Party Advisory |
| TP-Link TL-WR841N Command Injection ≈ Packet Storm | MISC | packetstormsecurity.com | |
| TP-Link | MISC | static.tp-link.com | Vendor Advisory |
| TP-Link | static.tp-link.com | ||
| TP-Link - Security Advisory | TP-Link | MISC | www.tp-link.com | Vendor Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.