Tp-link Tl-wdr7660 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Tp-link Tl-wdr7660 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (9)
CVE-2023-46371 — CVSS 9.8 (critical): TP-Link device TL-WDR7660 2.0.30 and TL-WR886N 2.0.12 has a stack overflow vulnerability via the function upgradeInfoJsonToBin.
CVE-2021-37774 — CVSS 8.0 (high): An issue was discovered in function httpProcDataSrv in TL-WDR7660 2.0.30 that allows attackers to execute arbitrary code.
CVE-2022-26988 — CVSS 7.8 (high): TP-Link TL-WDR7660 2.0.30, Mercury D196G 20200109_2.0.4, and Fast FAC1900R 20190827_2.0.2 routers have a stack overflow issue in `MntAte`…
CVE-2022-26987 — CVSS 7.8 (high): TP-Link TL-WDR7660 2.0.30, Mercury D196G 20200109_2.0.4, and Fast FAC1900R 20190827_2.0.2 routers have a stack overflow issue in…
CVE-2024-48710 — CVSS 6.5 (medium): In TP-Link TL-WDR7660 1.0, the wlanTimerRuleJsonToBin function handles the parameter string name without checking it, which can lead to…
CVE-2024-48712 — CVSS 6.5 (medium): In TP-Link TL-WDR7660 1.0, the rtRuleJsonToBin function handles the parameter string name without checking it, which can lead to stack…
CVE-2024-48713 — CVSS 6.5 (medium): In TP-Link TL-WDR7660 1.0, the wacWhitelistJsonToBin function handles the parameter string name without checking it, which can lead to…
CVE-2024-48714 — CVSS 6.5 (medium): In TP-Link TL-WDR7660 v1.0, the guestRuleJsonToBin function handles the parameter string name without checking it, which can lead to stack…