TL-WDR7660
by TP-Link
CVEs (11)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-48713 | 0.00 | — | 0.00 | Oct 15, 2024 | In TP-Link TL-WDR7660 1.0, the wacWhitelistJsonToBin function handles the parameter string name without checking it, which can lead to stack overflow vulnerabilities. | |||
| CVE-2024-48714 | 0.00 | — | 0.00 | Oct 15, 2024 | In TP-Link TL-WDR7660 v1.0, the guestRuleJsonToBin function handles the parameter string name without checking it, which can lead to stack overflow vulnerabilities. | |||
| CVE-2024-48710 | 0.00 | — | 0.00 | Oct 15, 2024 | In TP-Link TL-WDR7660 1.0, the wlanTimerRuleJsonToBin function handles the parameter string name without checking it, which can lead to stack overflow vulnerabilities. | |||
| CVE-2024-48712 | 0.00 | — | 0.00 | Oct 15, 2024 | In TP-Link TL-WDR7660 1.0, the rtRuleJsonToBin function handles the parameter string name without checking it, which can lead to stack overflow vulnerabilities. | |||
| CVE-2023-46527 | 0.00 | — | 0.00 | Oct 25, 2023 | TP-LINK TL-WR886N V7.0_3.0.14_Build_221115_Rel.56908n.bin and TL-WDR7660 2.0.30 was discovered to contain a stack overflow via the function bindRequestHandle. | |||
| CVE-2023-46522 | 0.00 | — | 0.00 | Oct 25, 2023 | TP-LINK device TL-WR886N V7.0_3.0.14_Build_221115_Rel.56908n.bin and TL-WDR7660 2.0.30 were discovered to contain a stack overflow via the function deviceInfoRegister. | |||
| CVE-2023-46373 | 0.00 | — | 0.00 | Oct 24, 2023 | TP-Link TL-WDR7660 2.0.30 has a stack overflow vulnerability via the function deviceInfoJsonToBincauses. | |||
| CVE-2023-46371 | 0.00 | — | 0.01 | Oct 24, 2023 | TP-Link device TL-WDR7660 2.0.30 and TL-WR886N 2.0.12 has a stack overflow vulnerability via the function upgradeInfoJsonToBin. | |||
| CVE-2021-37774 | 0.00 | — | 0.00 | Jan 19, 2023 | An issue was discovered in function httpProcDataSrv in TL-WDR7660 2.0.30 that allows attackers to execute arbitrary code. | |||
| CVE-2022-26988 | 0.00 | — | 0.01 | May 10, 2022 | TP-Link TL-WDR7660 2.0.30, Mercury D196G 20200109_2.0.4, and Fast FAC1900R 20190827_2.0.2 routers have a stack overflow issue in `MntAte` function. Local users could get remote code execution. | |||
| CVE-2022-26987 | 0.00 | — | 0.01 | May 10, 2022 | TP-Link TL-WDR7660 2.0.30, Mercury D196G 20200109_2.0.4, and Fast FAC1900R 20190827_2.0.2 routers have a stack overflow issue in `MmtAtePrase` function. Local users could get remote code execution. |
- CVE-2024-48713Oct 15, 2024risk 0.00cvss —epss 0.00
In TP-Link TL-WDR7660 1.0, the wacWhitelistJsonToBin function handles the parameter string name without checking it, which can lead to stack overflow vulnerabilities.
- CVE-2024-48714Oct 15, 2024risk 0.00cvss —epss 0.00
In TP-Link TL-WDR7660 v1.0, the guestRuleJsonToBin function handles the parameter string name without checking it, which can lead to stack overflow vulnerabilities.
- CVE-2024-48710Oct 15, 2024risk 0.00cvss —epss 0.00
In TP-Link TL-WDR7660 1.0, the wlanTimerRuleJsonToBin function handles the parameter string name without checking it, which can lead to stack overflow vulnerabilities.
- CVE-2024-48712Oct 15, 2024risk 0.00cvss —epss 0.00
In TP-Link TL-WDR7660 1.0, the rtRuleJsonToBin function handles the parameter string name without checking it, which can lead to stack overflow vulnerabilities.
- CVE-2023-46527Oct 25, 2023risk 0.00cvss —epss 0.00
TP-LINK TL-WR886N V7.0_3.0.14_Build_221115_Rel.56908n.bin and TL-WDR7660 2.0.30 was discovered to contain a stack overflow via the function bindRequestHandle.
- CVE-2023-46522Oct 25, 2023risk 0.00cvss —epss 0.00
TP-LINK device TL-WR886N V7.0_3.0.14_Build_221115_Rel.56908n.bin and TL-WDR7660 2.0.30 were discovered to contain a stack overflow via the function deviceInfoRegister.
- CVE-2023-46373Oct 24, 2023risk 0.00cvss —epss 0.00
TP-Link TL-WDR7660 2.0.30 has a stack overflow vulnerability via the function deviceInfoJsonToBincauses.
- CVE-2023-46371Oct 24, 2023risk 0.00cvss —epss 0.01
TP-Link device TL-WDR7660 2.0.30 and TL-WR886N 2.0.12 has a stack overflow vulnerability via the function upgradeInfoJsonToBin.
- CVE-2021-37774Jan 19, 2023risk 0.00cvss —epss 0.00
An issue was discovered in function httpProcDataSrv in TL-WDR7660 2.0.30 that allows attackers to execute arbitrary code.
- CVE-2022-26988May 10, 2022risk 0.00cvss —epss 0.01
TP-Link TL-WDR7660 2.0.30, Mercury D196G 20200109_2.0.4, and Fast FAC1900R 20190827_2.0.2 routers have a stack overflow issue in `MntAte` function. Local users could get remote code execution.
- CVE-2022-26987May 10, 2022risk 0.00cvss —epss 0.01
TP-Link TL-WDR7660 2.0.30, Mercury D196G 20200109_2.0.4, and Fast FAC1900R 20190827_2.0.2 routers have a stack overflow issue in `MmtAtePrase` function. Local users could get remote code execution.