Tp-link Tl-wr841n Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Tp-link Tl-wr841n Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (39)
CVE-2018-11714 — CVSS 9.8 (critical): An issue was discovered on TP-Link TL-WR840N v5 00000005 0.9.1 3.16 v0001.0 Build 170608 Rel.58696n and TL-WR841N v13 00000013 0.9.1 4.16…
CVE-2018-12575 — CVSS 9.8 (critical): On TP-Link TL-WR841N v13 00000001 0.9.1 4.16 v0001.0 Build 171019 Rel.55346n devices, all actions in the web interface are affected by…
CVE-2022-25073 — CVSS 9.8 (critical): TL-WR841Nv14_US_0.9.1_4.18 routers were discovered to contain a stack overflow in the function dm_fillObjByStr(). This vulnerability allows…
CVE-2023-36489 — CVSS 8.8 (high): Multiple TP-LINK products allow a network-adjacent unauthenticated attacker to execute arbitrary OS commands. Affected products/versions…
CVE-2018-12574 — CVSS 8.8 (high): CSRF exists for all actions in the web interface on TP-Link TL-WR841N v13 00000001 0.9.1 4.16 v0001.0 Build 180119 Rel.65243n devices.
CVE-2018-12577 — CVSS 8.8 (high): The Ping and Traceroute features on TP-Link TL-WR841N v13 00000001 0.9.1 4.16 v0001.0 Build 180119 Rel.65243n devices allow authenticated…
CVE-2019-17147 — CVSS 8.8 (high): This vulnerability allows remote attackers to execute arbitrary code on affected installations of TP-LINK TL-WR841N routers. Authentication…
CVE-2020-35576 — CVSS 8.8 (high): A Command Injection issue in the traceroute feature on TP-Link TL-WR841N V13 (JP) with firmware versions prior to 201216 allows…
CVE-2022-46912 — CVSS 8.8 (high): An issue in the firmware update process of TP-Link TL-WR841N / TL-WA841ND V7 3.13.9 and earlier allows attackers to execute arbitrary code…
CVE-2026-5039 — CVSS 8.8 (high): TP-Link TL-WR841N v13 uses DES-CBC encryption in the TDDPv2 debug protocol with a cryptographic key derived from default web management…
CVE-2022-30024 — CVSS 8.8 (high): A buffer overflow in the httpd daemon on TP-Link TL-WR841N V12 (firmware version 3.16.9) devices allows an authenticated remote attacker to…
CVE-2022-0162 — CVSS 8.4 (high): The vulnerability exists in TP-Link TL-WR841N V11 3.16.9 Build 160325 Rel.62500n wireless router due to transmission of authentication…
CVE-2023-33537 — CVSS 8.1 (high): TP-Link TL-WR940N V2/V4, TL-WR841N V8/V10, and TL-WR740N V1/V2 was discovered to contain a buffer overflow via the component…
CVE-2023-33536 — CVSS 8.1 (high): TP-Link TL-WR940N V2/V4, TL-WR841N V8/V10, and TL-WR740N V1/V2 was discovered to contain a buffer overflow via the component…
CVE-2012-5687 — CVSS 7.8 (high): Directory traversal vulnerability in the web-based management feature on the TP-LINK TL-WR841N router with firmware 3.13.9 build 120201…
CVE-2023-36358 — CVSS 7.7 (high): TP-Link TL-WR940N V2/V3/V4, TL-WR941ND V5/V6, TL-WR743ND V1 and TL-WR841N V8 were discovered to contain a buffer overflow in the component…
CVE-2023-36356 — CVSS 7.7 (high): TP-Link TL-WR940N V2/V4/V6, TL-WR841N V8, TL-WR941ND V5, and TL-WR740N V1/V2 were discovered to contain a buffer read out-of-bounds via the…
CVE-2023-36357 — CVSS 7.7 (high): An issue in the /userRpm/LocalManageControlRpm component of TP-Link TL-WR940N V2/V4/V6, TL-WR841N V8/V10, and TL-WR941ND V5 allows…
CVE-2025-53715 — CVSS 7.5 (high): A vulnerability has been found in TP-Link TL-WR841N V11. The vulnerability exists in the /userRpm/Wan6to4TunnelCfgRpm.htm file due to…
CVE-2026-3622 — CVSS 7.5 (high): The vulnerability exists in the UPnP component of TL-WR841N v14, where improper input validation leads to an out-of-bounds read…
CVE-2023-36354 — CVSS 7.5 (high): TP-Link TL-WR940N V4, TL-WR841N V8/V10, TL-WR740N V1/V2, TL-WR940N V2/V3, and TL-WR941ND V5/V6 were discovered to contain a buffer overflow…
CVE-2025-53713 — CVSS 7.5 (high): A vulnerability has been found in TP-Link TL-WR841N V11. The vulnerability exists in the /userRpm/WlanNetworkRpm_APC.htm file due to…
CVE-2025-53714 — CVSS 7.5 (high): A vulnerability has been found in TP-Link TL-WR841N V11. The vulnerability exists in the /userRpm/WzdWlanSiteSurveyRpm_AP.htm file due to…
CVE-2025-9014 — CVSS 7.5 (high): A Null Pointer Dereference vulnerability exists in the referer header check of the web portal of TP-Link TL-WR841N v14, caused by improper…
CVE-2023-36359 — CVSS 7.5 (high): TP-Link TL-WR940N V4, TL-WR841N V8/V10, TL-WR940N V2/V3 and TL-WR941ND V5/V6 were discovered to contain a buffer overflow in the component…
CVE-2025-53711 — CVSS 7.5 (high): A vulnerability has been found in TP-Link TL-WR841N v11, TL-WR842ND v2 and TL-WR494N v3. The vulnerability exists in the…
CVE-2025-53712 — CVSS 7.5 (high): A vulnerability has been found in TP-Link TL-WR841N V11. The vulnerability exists in the /userRpm/WlanNetworkRpm_AP.htm file due to missing…
CVE-2020-8423 — CVSS 7.2 (high): A buffer overflow in the httpd daemon on TP-Link TL-WR841N V10 (firmware version 3.16.9) devices allows an authenticated remote attacker to…
CVE-2026-3227 — CVSS 6.8 (medium): A command injection vulnerability was identified in TP-Link TL-WR802N v4, TL-WR841N v14, and TL-WR840N v6 due to improper neutralization of…
CVE-2026-9105 — CVSS 6.5 (medium): An authenticated stack-based buffer overflow vulnerability exists in the web management interface of TP-Link TL-WR841N v14. A remote…
CVE-2012-6276 — CVSS 4.3 (medium): Directory traversal vulnerability in the web-based management interface on the TP-LINK TL-WR841N router with firmware 3.13.9 build 120201…