A vulnerability has been found in TP-Link TL-WR841N V11. The vulnerability exists in the /userRpm/WlanNetworkRpm_APC.htm file due to missing input parameter validation, which may lead to the buffer overflow to cause a crash of the web service and result in a denial-of-service (DoS) condition. The attack may be launched remotely. This vulnerability only affects products that are no longer supported by the maintainer.
Advisories
Source ID Title
EUVD EUVD EUVD-2025-23016 A vulnerability has been found in TP-Link TL-WR841N V11. The vulnerability exists in the /userRpm/WlanNetworkRpm_APC.htm file due to missing input parameter validation, which may lead to the buffer overflow to cause a crash of the web service and result in a denial-of-service (DoS) condition. The attack may be launched remotely. This vulnerability only affects products that are no longer supported by the maintainer.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Fri, 01 Aug 2025 18:45:00 +0000

Type Values Removed Values Added
First Time appeared Tp-link tl-wr841n Firmware
CPEs cpe:2.3:h:tp-link:tl-wr841n:11:*:*:*:*:*:*:*
cpe:2.3:o:tp-link:tl-wr841n_firmware:*:*:*:*:*:*:*:*
Vendors & Products Tp-link tl-wr841n Firmware
Metrics cvssV3_1

{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H'}


Wed, 30 Jul 2025 06:30:00 +0000

Type Values Removed Values Added
First Time appeared Tp-link
Tp-link tl-wr841n
Vendors & Products Tp-link
Tp-link tl-wr841n

Tue, 29 Jul 2025 19:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Tue, 29 Jul 2025 18:15:00 +0000

Type Values Removed Values Added
Description A vulnerability has been found in TP-Link TL-WR841N V11. The vulnerability exists in the /userRpm/WlanNetworkRpm_APC.htm file due to missing input parameter validation, which may lead to the buffer overflow to cause a crash of the web service and result in a denial-of-service (DoS) condition. The attack may be launched remotely. This vulnerability only affects products that are no longer supported by the maintainer.
Title TP-Link TL-WR841N WlanNetworkRpm_APC.htm buffer overflow
Weaknesses CWE-119
CWE-120
References
Metrics cvssV4_0

{'score': 6.9, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N'}


cve-icon MITRE

Status: PUBLISHED

Assigner: TPLink

Published:

Updated: 2025-07-29T18:28:02.146Z

Reserved: 2025-07-09T00:57:57.182Z

Link: CVE-2025-53713

cve-icon Vulnrichment

Updated: 2025-07-29T18:27:59.501Z

cve-icon NVD

Status : Analyzed

Published: 2025-07-29T18:15:31.113

Modified: 2025-08-01T18:43:02.853

Link: CVE-2025-53713

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2025-07-30T06:15:16Z