CVE-2022-30024 - OpenCVE

A buffer overflow in the httpd daemon on TP-Link TL-WR841N V12 (firmware version 3.16.9) devices allows an authenticated remote attacker to execute arbitrary code via a GET request to the page for the System Tools of the Wi-Fi network. This affects TL-WR841 V12 TL-WR841N(EU)_V12_160624 and TL-WR841 V11 TL-WR841N(EU)_V11_160325 , TL-WR841N_V11_150616 and TL-WR841 V10 TL-WR841N_V10_150310 are also affected.

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors & Products
CPE Configurations

Vendors	Products
Tp-link	Tl-wr841 Firmware Tl-wr841n Tl-wr841n\(eu\) Tl-wr841n Firmware Tl-wr841n\(eu\) Firmware Tl-wr841

Configuration 1 [-]

AND

cpe:2.3:o:tp-link:tl-wr841_firmware:-:*:*:*:*:*:*:*

OR	cpe:2.3:h:tp-link:tl-wr841:10:::::::*
	cpe:2.3:h:tp-link:tl-wr841:11:::::::*
	cpe:2.3:h:tp-link:tl-wr841:12:::::::*

Configuration 2 [-]

AND

cpe:2.3:o:tp-link:tl-wr841n_firmware:3.16.9:*:*:*:*:*:*:*

cpe:2.3:h:tp-link:tl-wr841n:12:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:o:tp-link:tl-wr841n\(eu\)_firmware:160325:*:*:*:*:*:*:*

cpe:2.3:h:tp-link:tl-wr841n\(eu\):11:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:o:tp-link:tl-wr841n_firmware:150616:*:*:*:*:*:*:*

cpe:2.3:h:tp-link:tl-wr841n:11:*:*:*:*:*:*:*

Configuration 5 [-]

AND

cpe:2.3:o:tp-link:tl-wr841n_firmware:150310:*:*:*:*:*:*:*

cpe:2.3:h:tp-link:tl-wr841n:10:*:*:*:*:*:*:*

References

Link	Resource
http://tl-wr841.com	Broken Link URL Repurposed
http://tp-link.com	Vendor Advisory
https://pastebin.com/0XRFr3zE	Third Party Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2022-07-14T13:41:42

Updated: 2022-07-14T13:41:42

Reserved: 2022-05-02T00:00:00

Link: CVE-2022-30024

JSON object: View

NVD Information

Status : Analyzed

Published: 2022-07-14T14:15:13.277

Modified: 2024-02-14T01:17:43.863

Link: CVE-2022-30024

JSON object: View

Redhat Information

No data.

CWE

CWE-120

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "A buffer overflow in the httpd daemon on TP-Link TL-WR841N V12 (firmware version 3.16.9) devices allows an authenticated remote attacker to execute arbitrary code via a GET request to the page for the System Tools of the Wi-Fi network. This affects TL-WR841 V12 TL-WR841N(EU)_V12_160624 and TL-WR841 V11 TL-WR841N(EU)_V11_160325 , TL-WR841N_V11_150616 and TL-WR841 V10 TL-WR841N_V10_150310 are also affected."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2022-07-14T13:41:42", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "http://tp-link.com"}, {"tags": ["x_refsource_MISC"], "url": "http://tl-wr841.com"}, {"tags": ["x_refsource_MISC"], "url": "https://pastebin.com/0XRFr3zE"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2022-30024", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "A buffer overflow in the httpd daemon on TP-Link TL-WR841N V12 (firmware version 3.16.9) devices allows an authenticated remote attacker to execute arbitrary code via a GET request to the page for the System Tools of the Wi-Fi network. This affects TL-WR841 V12 TL-WR841N(EU)_V12_160624 and TL-WR841 V11 TL-WR841N(EU)_V11_160325 , TL-WR841N_V11_150616 and TL-WR841 V10 TL-WR841N_V10_150310 are also affected."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://tp-link.com", "refsource": "MISC", "url": "http://tp-link.com"}, {"name": "http://tl-wr841.com", "refsource": "MISC", "url": "http://tl-wr841.com"}, {"name": "https://pastebin.com/0XRFr3zE", "refsource": "MISC", "url": "https://pastebin.com/0XRFr3zE"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2022-30024", "datePublished": "2022-07-14T13:41:42", "dateReserved": "2022-05-02T00:00:00", "dateUpdated": "2022-07-14T13:41:42", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:tp-link:tl-wr841_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "44B31977-DF82-44D4-B86D-06811BAD44EA", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:tp-link:tl-wr841:10:*:*:*:*:*:*:*", "matchCriteriaId": "1D0FF223-7AE0-4423-B291-A5E3624FE2E0", "vulnerable": false}, {"criteria": "cpe:2.3:h:tp-link:tl-wr841:11:*:*:*:*:*:*:*", "matchCriteriaId": "71CC9729-8915-4D0E-B1BC-63D494EEA021", "vulnerable": false}, {"criteria": "cpe:2.3:h:tp-link:tl-wr841:12:*:*:*:*:*:*:*", "matchCriteriaId": "6C94F6B3-2160-4F2D-AFA4-B540AA3B7193", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:tp-link:tl-wr841n_firmware:3.16.9:*:*:*:*:*:*:*", "matchCriteriaId": "B81E723C-539A-41E7-8486-A8263E9491F5", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:tp-link:tl-wr841n:12:*:*:*:*:*:*:*", "matchCriteriaId": "E855A3D8-9968-4DF9-890D-62028472A11B", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:tp-link:tl-wr841n\\(eu\\)_firmware:160325:*:*:*:*:*:*:*", "matchCriteriaId": "1F581106-3805-44B4-81B6-9C30D02DE3B6", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:tp-link:tl-wr841n\\(eu\\):11:*:*:*:*:*:*:*", "matchCriteriaId": "F57BBF8C-693B-4249-8ACF-1FEE55D777D5", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:tp-link:tl-wr841n_firmware:150616:*:*:*:*:*:*:*", "matchCriteriaId": "D129F04E-E5E0-47C8-82DF-4B782306BC9E", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:tp-link:tl-wr841n:11:*:*:*:*:*:*:*", "matchCriteriaId": "508A2761-3DB2-4973-8B9C-22BE876EE987", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:tp-link:tl-wr841n_firmware:150310:*:*:*:*:*:*:*", "matchCriteriaId": "8CB29067-7290-4B39-ABF8-4805BAF78804", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:tp-link:tl-wr841n:10:*:*:*:*:*:*:*", "matchCriteriaId": "605FA887-700C-4A7E-A253-E672D5554737", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "A buffer overflow in the httpd daemon on TP-Link TL-WR841N V12 (firmware version 3.16.9) devices allows an authenticated remote attacker to execute arbitrary code via a GET request to the page for the System Tools of the Wi-Fi network. This affects TL-WR841 V12 TL-WR841N(EU)_V12_160624 and TL-WR841 V11 TL-WR841N(EU)_V11_160325 , TL-WR841N_V11_150616 and TL-WR841 V10 TL-WR841N_V10_150310 are also affected."}, {"lang": "es", "value": "Un desbordamiento de b\u00fafer en el demonio httpd en los dispositivos TP-Link TL-WR841N V12 (versi\u00f3n de firmware 3.16.9) permite a un atacante remoto autenticado ejecutar c\u00f3digo arbitrario por medio de una petici\u00f3n GET a la p\u00e1gina de Herramientas del sistema de la red Wi-Fi. Esto afecta a los dispositivos TL-WR841 V12 TL-WR841N(EU)_V12_160624 y TL-WR841 V11 TL-WR841N(EU)_V11_160325 , TL-WR841N_V11_150616 y TL-WR841 V10 TL-WR841N_V10_150310 tambi\u00e9n est\u00e1n afectados"}], "id": "CVE-2022-30024", "lastModified": "2024-02-14T01:17:43.863", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2022-07-14T14:15:13.277", "references": [{"source": "cve@mitre.org", "tags": ["Broken Link", "URL Repurposed"], "url": "http://tl-wr841.com"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://tp-link.com"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://pastebin.com/0XRFr3zE"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-120"}], "source": "nvd@nist.gov", "type": "Primary"}]}