VYPR

TL-WDR7660

by TP-Link

CVEs (10)

  • CVE-2023-46527CriOct 25, 2023
    risk 0.64cvss 9.8epss 0.01

    TP-LINK TL-WR886N V7.0_3.0.14_Build_221115_Rel.56908n.bin and TL-WDR7660 2.0.30 was discovered to contain a stack overflow via the function bindRequestHandle.

  • CVE-2023-46522CriOct 25, 2023
    risk 0.64cvss 9.8epss 0.01

    TP-LINK device TL-WR886N V7.0_3.0.14_Build_221115_Rel.56908n.bin and TL-WDR7660 2.0.30 were discovered to contain a stack overflow via the function deviceInfoRegister.

  • CVE-2023-46373CriOct 25, 2023
    risk 0.64cvss 9.8epss 0.01

    TP-Link TL-WDR7660 2.0.30 has a stack overflow vulnerability via the function deviceInfoJsonToBincauses.

  • CVE-2023-46371CriOct 25, 2023
    risk 0.64cvss 9.8epss 0.01

    TP-Link device TL-WDR7660 2.0.30 and TL-WR886N 2.0.12 has a stack overflow vulnerability via the function upgradeInfoJsonToBin.

  • CVE-2022-26988HigMay 10, 2022
    risk 0.51cvss 7.8epss 0.01

    TP-Link TL-WDR7660 2.0.30, Mercury D196G 20200109_2.0.4, and Fast FAC1900R 20190827_2.0.2 routers have a stack overflow issue in `MntAte` function. Local users could get remote code execution.

  • CVE-2022-26987HigMay 10, 2022
    risk 0.51cvss 7.8epss 0.01

    TP-Link TL-WDR7660 2.0.30, Mercury D196G 20200109_2.0.4, and Fast FAC1900R 20190827_2.0.2 routers have a stack overflow issue in `MmtAtePrase` function. Local users could get remote code execution.

  • CVE-2024-48714MedOct 15, 2024
    risk 0.42cvss 6.5epss 0.00

    In TP-Link TL-WDR7660 v1.0, the guestRuleJsonToBin function handles the parameter string name without checking it, which can lead to stack overflow vulnerabilities.

  • CVE-2024-48713MedOct 15, 2024
    risk 0.42cvss 6.5epss 0.00

    In TP-Link TL-WDR7660 1.0, the wacWhitelistJsonToBin function handles the parameter string name without checking it, which can lead to stack overflow vulnerabilities.

  • CVE-2024-48712MedOct 15, 2024
    risk 0.42cvss 6.5epss 0.00

    In TP-Link TL-WDR7660 1.0, the rtRuleJsonToBin function handles the parameter string name without checking it, which can lead to stack overflow vulnerabilities.

  • CVE-2024-48710MedOct 15, 2024
    risk 0.42cvss 6.5epss 0.00

    In TP-Link TL-WDR7660 1.0, the wlanTimerRuleJsonToBin function handles the parameter string name without checking it, which can lead to stack overflow vulnerabilities.