Tl Wdr4300 Firmware
by TP-Link
CVEs (5)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2015-3035 | Hig | 0.70 | 7.5 | 0.84 | KEV | Apr 22, 2015 | Directory traversal vulnerability in TP-LINK Archer C5 (1.2) with firmware before 150317, C7 (2.0) with firmware before 150304, and C8 (1.0) with firmware before 150316, Archer C9 (1.0), TL-WDR3500 (1.0), TL-WDR3600 (1.0), and TL-WDR4300 (1.0) with firmware before 150302,… | |
| CVE-2013-4654 | 0.00 | — | 0.03 | Nov 13, 2019 | Symlink Traversal vulnerability in TP-LINK TL-WDR4300 and TL-1043ND.. | |||
| CVE-2013-4848 | 0.00 | — | 0.01 | Oct 25, 2019 | TP-Link TL-WDR4300 version 3.13.31 has multiple CSRF vulnerabilities. | |||
| CVE-2014-4728 | 0.00 | — | 0.02 | Sep 30, 2014 | The web server in the TP-LINK N750 Wireless Dual Band Gigabit Router (TL-WDR4300) with firmware before 140916 allows remote attackers to cause a denial of service (crash) via a long header in a GET request. | |||
| CVE-2014-4727 | 0.00 | — | 0.02 | Sep 30, 2014 | Cross-site scripting (XSS) vulnerability in the DHCP clients page in the TP-LINK N750 Wireless Dual Band Gigabit Router (TL-WDR4300) with firmware before 140916 allows remote attackers to inject arbitrary web script or HTML via the hostname in a DHCP request. |
- risk 0.70cvss 7.5epss 0.84
Directory traversal vulnerability in TP-LINK Archer C5 (1.2) with firmware before 150317, C7 (2.0) with firmware before 150304, and C8 (1.0) with firmware before 150316, Archer C9 (1.0), TL-WDR3500 (1.0), TL-WDR3600 (1.0), and TL-WDR4300 (1.0) with firmware before 150302,…
- CVE-2013-4654Nov 13, 2019risk 0.00cvss —epss 0.03
Symlink Traversal vulnerability in TP-LINK TL-WDR4300 and TL-1043ND..
- CVE-2013-4848Oct 25, 2019risk 0.00cvss —epss 0.01
TP-Link TL-WDR4300 version 3.13.31 has multiple CSRF vulnerabilities.
- CVE-2014-4728Sep 30, 2014risk 0.00cvss —epss 0.02
The web server in the TP-LINK N750 Wireless Dual Band Gigabit Router (TL-WDR4300) with firmware before 140916 allows remote attackers to cause a denial of service (crash) via a long header in a GET request.
- CVE-2014-4727Sep 30, 2014risk 0.00cvss —epss 0.02
Cross-site scripting (XSS) vulnerability in the DHCP clients page in the TP-LINK N750 Wireless Dual Band Gigabit Router (TL-WDR4300) with firmware before 140916 allows remote attackers to inject arbitrary web script or HTML via the hostname in a DHCP request.