CVE-2020-35575 - Vulnerability Details

A password-disclosure issue in the web interface on certain TP-Link devices allows a remote attacker to get full administrative access to the web panel. This affects WA901ND devices before 3.16.9(201211) beta, and Archer C5, Archer C7, MR3420, MR6400, WA701ND, WA801ND, WDR3500, WDR3600, WE843N, WR1043ND, WR1045ND, WR740N, WR741ND, WR749N, WR802N, WR840N, WR841HP, WR841N, WR842N, WR842ND, WR845N, WR940N, WR941HP, WR945N, WR949N, and WRD4300 devices.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

The EPSS score is 0.18786.

Key SSVC decision points have not yet been added.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

n/a

affected

Version	Status	Constraints
`n/a`	affected	—

Configuration 1 [-]

AND

cpe:2.3:o:tp-link:wa901nd_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:tp-link:wa901nd:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:o:tp-link:archer_c5_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:tp-link:archer_c5:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:o:tp-link:archer_c7_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:tp-link:archer_c7:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:o:tp-link:mr3420_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:tp-link:mr3420:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND

cpe:2.3:o:tp-link:mr6400_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:tp-link:mr6400:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND

cpe:2.3:o:tp-link:wa701nd_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:tp-link:wa701nd:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND

cpe:2.3:o:tp-link:wa801nd_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:tp-link:wa801nd:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND

cpe:2.3:o:tp-link:wdr3500_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:tp-link:wdr3500:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND

cpe:2.3:o:tp-link:wdr3600_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:tp-link:wdr3600:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND

cpe:2.3:o:tp-link:we843n_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:tp-link:we843n:-:*:*:*:*:*:*:*

Configuration 11 [-]

AND

cpe:2.3:o:tp-link:wr1043nd_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:tp-link:wr1043nd:-:*:*:*:*:*:*:*

Configuration 12 [-]

AND

cpe:2.3:o:tp-link:wr1045nd_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:tp-link:wr1045nd:-:*:*:*:*:*:*:*

Configuration 13 [-]

AND

cpe:2.3:o:tp-link:wr740n_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:tp-link:wr740n:-:*:*:*:*:*:*:*

Configuration 14 [-]

AND

cpe:2.3:o:tp-link:wr741nd_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:tp-link:wr741nd:-:*:*:*:*:*:*:*

Configuration 15 [-]

AND

cpe:2.3:o:tp-link:wr749n_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:tp-link:wr749n:-:*:*:*:*:*:*:*

Configuration 16 [-]

AND

cpe:2.3:o:tp-link:wr802n_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:tp-link:wr802n:-:*:*:*:*:*:*:*

Configuration 17 [-]

AND

cpe:2.3:o:tp-link:wr840n_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:tp-link:wr840n:-:*:*:*:*:*:*:*

Configuration 18 [-]

AND

cpe:2.3:o:tp-link:wr841hp_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:tp-link:wr841hp:-:*:*:*:*:*:*:*

Configuration 19 [-]

AND

cpe:2.3:o:tp-link:wr841n_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:tp-link:wr841n:-:*:*:*:*:*:*:*

Configuration 20 [-]

AND

cpe:2.3:o:tp-link:wr842n_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:tp-link:wr842n:-:*:*:*:*:*:*:*

Configuration 21 [-]

AND

cpe:2.3:o:tp-link:wr842nd_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:tp-link:wr842nd:-:*:*:*:*:*:*:*

Configuration 22 [-]

AND

cpe:2.3:o:tp-link:wr845n_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:tp-link:wr845n:-:*:*:*:*:*:*:*

Configuration 23 [-]

AND

cpe:2.3:o:tp-link:wr940n_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:tp-link:wr940n:-:*:*:*:*:*:*:*

Configuration 24 [-]

AND

cpe:2.3:o:tp-link:wr941hp_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:tp-link:wr941hp:-:*:*:*:*:*:*:*

Configuration 25 [-]

AND

cpe:2.3:o:tp-link:wr945n_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:tp-link:wr945n:-:*:*:*:*:*:*:*

Configuration 26 [-]

AND

cpe:2.3:o:tp-link:wr949n_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:tp-link:wr949n:-:*:*:*:*:*:*:*

Configuration 27 [-]

AND

cpe:2.3:o:tp-link:wrd4300_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:tp-link:wrd4300:-:*:*:*:*:*:*:*

No data.

Project Subscriptions

Vendors	Products
Tp-link Subscribe	Archer C5 Subscribe Archer C5 Firmware Subscribe Archer C7 Subscribe Archer C7 Firmware Subscribe Mr3420 Subscribe Mr3420 Firmware Subscribe Mr6400 Subscribe Mr6400 Firmware Subscribe Wa701nd Subscribe Wa701nd Firmware Subscribe Wa801nd Subscribe Wa801nd Firmware Subscribe Wa901nd Subscribe Wa901nd Firmware Subscribe Wdr3500 Subscribe Wdr3500 Firmware Subscribe Wdr3600 Subscribe Wdr3600 Firmware Subscribe We843n Subscribe We843n Firmware Subscribe Wr1043nd Subscribe Wr1043nd Firmware Subscribe Wr1045nd Subscribe Wr1045nd Firmware Subscribe Wr740n Subscribe Wr740n Firmware Subscribe Wr741nd Subscribe Wr741nd Firmware Subscribe Wr749n Subscribe Wr749n Firmware Subscribe Wr802n Subscribe Wr802n Firmware Subscribe Wr840n Subscribe Wr840n Firmware Subscribe Wr841hp Subscribe Wr841hp Firmware Subscribe Wr841n Subscribe Wr841n Firmware Subscribe Wr842n Subscribe Wr842n Firmware Subscribe Wr842nd Subscribe Wr842nd Firmware Subscribe Wr845n Subscribe Wr845n Firmware Subscribe Wr940n Subscribe Wr940n Firmware Subscribe Wr941hp Subscribe Wr941hp Firmware Subscribe Wr945n Subscribe Wr945n Firmware Subscribe Wr949n Subscribe Wr949n Firmware Subscribe Wrd4300 Subscribe Wrd4300 Firmware Subscribe

Advisories

No advisories yet.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
http://packetstormsecurity.com/files/163274/TP-Link-TL-WR841N-Command-Injection.html
https://pastebin.com/F8AuUdck
https://static.tp-link.com/2020/202012/20201214/wa901ndv5_eu_3_16_9_up_boot%28201211%29.zip
https://www.tp-link.com/us/security

History

No history.

Projects

Sign in to view the affected projects.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2020-12-26T02:02:45

Updated: 2024-08-04T17:09:13.414Z

Reserved: 2020-12-20T00:00:00

Link: CVE-2020-35575

Vulnrichment

No data.

NVD

Status : Modified

Published: 2020-12-26T02:15:12.870

Modified: 2024-11-21T05:27:36.917

Link: CVE-2020-35575

Redhat

No data.

OpenCVE Enrichment

No data.

Weaknesses

NVD-CWE-noinfo

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Project Subscriptions

Projects

JSON object

JSON object

JSON object

JSON object

JSON object