Known Vulnerabilities for products from Tp-link

Listed below are 20 of the newest known vulnerabilities associated with the vendor "Tp-link".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Additional devices specifications by Tp-link can be found at device.report : Tp-link

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2022-40626 An unauthenticated user can create a link with reflected Javascript code inside the backurl parameter and send it to other au... 6.1 - MEDIUM 2022-09-14 2022-09-19
CVE-2022-40143 A link following local privilege escalation vulnerability in Trend Micro Apex One and Trend Micro Apex One as a Service serve... 7.3 - HIGH 2022-09-19 2022-09-19
CVE-2022-40142 A security link following local privilege escalation vulnerability in Trend Micro Apex One and Trend Micro Apex One as a Serv... 7.8 - HIGH 2022-09-19 2022-09-19
CVE-2022-39215 Tauri is a framework for building binaries for all major desktop platforms. Due to missing canonicalization when `readDir` is... 5.8 - MEDIUM 2022-09-15 2022-09-15
CVE-2022-39207 Onedev is an open source, self-hosted Git Server with CI/CD and Kanban. During CI/CD builds, it is possible to save build art... 5.4 - MEDIUM 2022-09-13 2022-09-23
CVE-2022-39050 An attacker who is logged into OTRS as an admin user may manipulate customer URL field to store JavaScript code to be run lat... 4.8 - MEDIUM 2022-09-05 2022-09-05
CVE-2022-38790 Weave GitOps Enterprise before 0.9.0-rc.5 has a cross-site scripting (XSS) bug allowing a malicious user to inject a javascri... 5.4 - MEDIUM 2022-09-01 2022-09-01
CVE-2022-38557 D-Link DIR845L v1.00-v1.03 contains a Static Default Credential vulnerability in /etc/init0.d/S80telnetd.sh. 9.8 - CRITICAL 2022-08-28 2022-08-28
CVE-2022-38359 Cross-site request forgery attacks can be carried out against the Eyes of Network web application, due to an absence of adequ... 8.8 - HIGH 2022-08-15 2022-08-15
CVE-2022-38258 A local file inclusion (LFI) vulnerability in D-Link DIR 819 v1.06 allows attackers to cause a Denial of Service (DoS) or acc... 8.1 - HIGH 2022-09-08 2022-09-08
CVE-2022-25074 ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... 9.8 - CRITICAL 2022-02-24 2022-03-03
CVE-2022-25073 ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... 9.8 - CRITICAL 2022-02-24 2022-03-03
CVE-2022-25072 ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... 9.8 - CRITICAL 2022-02-24 2022-03-03
CVE-2022-25064 ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... 9.8 - CRITICAL 2022-02-25 2022-03-08
CVE-2022-25062 ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... 7.5 - HIGH 2022-02-25 2022-03-08
CVE-2022-25061 ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... 9.8 - CRITICAL 2022-02-25 2022-03-09
CVE-2022-25060 ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... 9.8 - CRITICAL 2022-02-25 2022-03-09
CVE-2022-24355 ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... 8.8 - HIGH 2022-02-18 2022-02-28
CVE-2022-24354 ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... 8.8 - HIGH 2022-02-18 2022-02-28
CVE-2022-22922 ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... 9.8 - CRITICAL 2022-02-18 2022-02-25
Results limited to 20 most recent vulnerabilities

Known software with vulnerabilities from Tp-link

Type Vendor Product Version
HardwareTp-linkAc1750-
Operating
System		Tp-linkAc1750 Firmware190726
HardwareTp-linkArcher A7v5
Operating
System		Tp-linkArcher A7 Firmware200721
Operating
System		Tp-linkArcher C1200 Firmware1.0.0
HardwareTp-linkArcher C5 1.2-
Operating
System		Tp-linkArcher C5 1.2 Firmware141126
Operating
System		Tp-linkArcher C5 Firmware-
HardwareTp-linkArcher C50 V3-
Operating
System		Tp-linkArcher C50 V3 Firmware170822
HardwareTp-linkArcher C7-
HardwareTp-linkArcher C7 2.0-
Operating
System		Tp-linkArcher C7 2.0 Firmware141110
Operating
System		Tp-linkArcher C7 Firmware-
HardwareTp-linkArcher C8 1.0-
Operating
System		Tp-linkArcher C8 1.0 Firmware141023
HardwareTp-linkArcher C9v1
HardwareTp-linkArcher C9 1.0-
Operating
System		Tp-linkArcher C9 1.0 Firmware150122
Operating
System		Tp-linkArcher C9 Firmware180125
Results limited to 20 most recent known configurations

Popular searches for "Tp-link"

WiFi Networking Equipment for Home & Business | TP-Link

www.tp-link.com

WiFi Networking Equipment for Home & Business | TP-Link P-Link WiFi networking devices, shipping products to over 170 countries and hundreds of millions of customers. tp-link.com

www.tp-link.com/us www.tp-link.com/en www.tp-link.com/en www.tp-link.com/us www.tp-link.com/bd/business-networking/omada-eap www.tp-link.us www.tp-link.com/il www.tp-link.com/au/service-provider/lte-routers Wi-Fi TP-Link Computer network Network switch Router (computing) Wireless access point Networking hardware Home business Mesh networking Wireless Consumer JetStream Small form-factor pluggable transceiver Internet service provider Power over Ethernet JavaScript Web browser Business Managed services Gigabit

By selecting these links, you may be leaving CVEreport webspace. We have provided these links to other websites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other websites that are more appropriate for your purpose. CVEreport does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, CVEreport does not endorse any commercial products that may be mentioned on these sites. Please address comments about any linked pages to [email protected].