CVE-2022-30024 - OpenCVE

A buffer overflow in the httpd daemon on TP-Link TL-WR841N V12 (firmware version 3.16.9) devices allows an authenticated remote attacker to execute arbitrary code via a GET request to the page for the System Tools of the Wi-Fi network. This affects TL-WR841 V12 TL-WR841N(EU)_V12_160624 and TL-WR841 V11 TL-WR841N(EU)_V11_160325 , TL-WR841N_V11_150616 and TL-WR841 V10 TL-WR841N_V10_150310 are also affected.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Tp-link	Tl-wr841 Tl-wr841 Firmware Tl-wr841n Tl-wr841n\(eu\) Tl-wr841n\(eu\) Firmware Tl-wr841n Firmware

Configuration 1 [-]

AND

OR	cpe:2.3:h:tp-link:tl-wr841:10:::::::*
	cpe:2.3:h:tp-link:tl-wr841:11:::::::*
	cpe:2.3:h:tp-link:tl-wr841:12:::::::*

cpe:2.3:o:tp-link:tl-wr841_firmware:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:h:tp-link:tl-wr841n:12:*:*:*:*:*:*:*

cpe:2.3:o:tp-link:tl-wr841n_firmware:3.16.9:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:h:tp-link:tl-wr841n\(eu\):11:*:*:*:*:*:*:*

cpe:2.3:o:tp-link:tl-wr841n\(eu\)_firmware:160325:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:h:tp-link:tl-wr841n:11:*:*:*:*:*:*:*

cpe:2.3:o:tp-link:tl-wr841n_firmware:150616:*:*:*:*:*:*:*

Configuration 5 [-]

AND

cpe:2.3:h:tp-link:tl-wr841n:10:*:*:*:*:*:*:*

cpe:2.3:o:tp-link:tl-wr841n_firmware:150310:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://tl-wr841.com
http://tp-link.com
https://pastebin.com/0XRFr3zE

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2022-07-14T13:41:42

Updated: 2024-08-03T06:40:46.361Z

Reserved: 2022-05-02T00:00:00

Link: CVE-2022-30024

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2022-07-14T14:15:13.277

Modified: 2024-02-14T01:17:43.863

Link: CVE-2022-30024

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "A buffer overflow in the httpd daemon on TP-Link TL-WR841N V12 (firmware version 3.16.9) devices allows an authenticated remote attacker to execute arbitrary code via a GET request to the page for the System Tools of the Wi-Fi network. This affects TL-WR841 V12 TL-WR841N(EU)_V12_160624 and TL-WR841 V11 TL-WR841N(EU)_V11_160325 , TL-WR841N_V11_150616 and TL-WR841 V10 TL-WR841N_V10_150310 are also affected."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2022-07-14T13:41:42", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "http://tp-link.com"}, {"tags": ["x_refsource_MISC"], "url": "http://tl-wr841.com"}, {"tags": ["x_refsource_MISC"], "url": "https://pastebin.com/0XRFr3zE"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2022-30024", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "A buffer overflow in the httpd daemon on TP-Link TL-WR841N V12 (firmware version 3.16.9) devices allows an authenticated remote attacker to execute arbitrary code via a GET request to the page for the System Tools of the Wi-Fi network. This affects TL-WR841 V12 TL-WR841N(EU)_V12_160624 and TL-WR841 V11 TL-WR841N(EU)_V11_160325 , TL-WR841N_V11_150616 and TL-WR841 V10 TL-WR841N_V10_150310 are also affected."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://tp-link.com", "refsource": "MISC", "url": "http://tp-link.com"}, {"name": "http://tl-wr841.com", "refsource": "MISC", "url": "http://tl-wr841.com"}, {"name": "https://pastebin.com/0XRFr3zE", "refsource": "MISC", "url": "https://pastebin.com/0XRFr3zE"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T06:40:46.361Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://tp-link.com"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://tl-wr841.com"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://pastebin.com/0XRFr3zE"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2022-30024", "datePublished": "2022-07-14T13:41:42", "dateReserved": "2022-05-02T00:00:00", "dateUpdated": "2024-08-03T06:40:46.361Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:tp-link:tl-wr841:10:*:*:*:*:*:*:*", "matchCriteriaId": "1D0FF223-7AE0-4423-B291-A5E3624FE2E0", "vulnerable": false}, {"criteria": "cpe:2.3:h:tp-link:tl-wr841:11:*:*:*:*:*:*:*", "matchCriteriaId": "71CC9729-8915-4D0E-B1BC-63D494EEA021", "vulnerable": false}, {"criteria": "cpe:2.3:h:tp-link:tl-wr841:12:*:*:*:*:*:*:*", "matchCriteriaId": "6C94F6B3-2160-4F2D-AFA4-B540AA3B7193", "vulnerable": false}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:tp-link:tl-wr841_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "44B31977-DF82-44D4-B86D-06811BAD44EA", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:tp-link:tl-wr841n:12:*:*:*:*:*:*:*", "matchCriteriaId": "E855A3D8-9968-4DF9-890D-62028472A11B", "vulnerable": false}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:tp-link:tl-wr841n_firmware:3.16.9:*:*:*:*:*:*:*", "matchCriteriaId": "B81E723C-539A-41E7-8486-A8263E9491F5", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:tp-link:tl-wr841n\\(eu\\):11:*:*:*:*:*:*:*", "matchCriteriaId": "F57BBF8C-693B-4249-8ACF-1FEE55D777D5", "vulnerable": false}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:tp-link:tl-wr841n\\(eu\\)_firmware:160325:*:*:*:*:*:*:*", "matchCriteriaId": "1F581106-3805-44B4-81B6-9C30D02DE3B6", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:tp-link:tl-wr841n:11:*:*:*:*:*:*:*", "matchCriteriaId": "508A2761-3DB2-4973-8B9C-22BE876EE987", "vulnerable": false}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:tp-link:tl-wr841n_firmware:150616:*:*:*:*:*:*:*", "matchCriteriaId": "D129F04E-E5E0-47C8-82DF-4B782306BC9E", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:tp-link:tl-wr841n:10:*:*:*:*:*:*:*", "matchCriteriaId": "605FA887-700C-4A7E-A253-E672D5554737", "vulnerable": false}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:tp-link:tl-wr841n_firmware:150310:*:*:*:*:*:*:*", "matchCriteriaId": "8CB29067-7290-4B39-ABF8-4805BAF78804", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "A buffer overflow in the httpd daemon on TP-Link TL-WR841N V12 (firmware version 3.16.9) devices allows an authenticated remote attacker to execute arbitrary code via a GET request to the page for the System Tools of the Wi-Fi network. This affects TL-WR841 V12 TL-WR841N(EU)_V12_160624 and TL-WR841 V11 TL-WR841N(EU)_V11_160325 , TL-WR841N_V11_150616 and TL-WR841 V10 TL-WR841N_V10_150310 are also affected."}, {"lang": "es", "value": "Un desbordamiento de b\u00fafer en el demonio httpd en los dispositivos TP-Link TL-WR841N V12 (versi\u00f3n de firmware 3.16.9) permite a un atacante remoto autenticado ejecutar c\u00f3digo arbitrario por medio de una petici\u00f3n GET a la p\u00e1gina de Herramientas del sistema de la red Wi-Fi. Esto afecta a los dispositivos TL-WR841 V12 TL-WR841N(EU)_V12_160624 y TL-WR841 V11 TL-WR841N(EU)_V11_160325 , TL-WR841N_V11_150616 y TL-WR841 V10 TL-WR841N_V10_150310 tambi\u00e9n est\u00e1n afectados"}], "id": "CVE-2022-30024", "lastModified": "2024-02-14T01:17:43.863", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2022-07-14T14:15:13.277", "references": [{"source": "cve@mitre.org", "tags": ["Broken Link", "URL Repurposed"], "url": "http://tl-wr841.com"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://tp-link.com"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://pastebin.com/0XRFr3zE"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-120"}], "source": "nvd@nist.gov", "type": "Primary"}]}