TP-Link AX10v1 V1_211117 allows attackers to execute a replay attack by using a previously transmitted encrypted authentication message and valid authentication token. Attackers are able to login to the web application as an admin user.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Sun, 13 Jul 2025 13:45:00 +0000

Type Values Removed Values Added
Metrics epss

{'score': 0.00415}

epss

{'score': 0.00519}


Thu, 15 May 2025 15:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2025-05-15T14:58:08.480Z

Reserved: 2022-09-26T00:00:00.000Z

Link: CVE-2022-41541

cve-icon Vulnrichment

Updated: 2024-08-03T12:42:46.261Z

cve-icon NVD

Status : Modified

Published: 2022-10-18T15:15:10.243

Modified: 2025-05-15T15:16:06.270

Link: CVE-2022-41541

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.