PT-2018-13826 · Tp Link · Tp-Link Tl-Wr886N

Lbp

Published

2018-09-13

Updated

2020-08-24

CVE-2018-17006

CVSS v3.1

6.5

Medium

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions TP-Link TL-WR886N versions 6.0 2.3.4 through 7.0 1.1.0

Description An issue allows authenticated attackers to crash router services, including inetd, HTTP, DNS, and UPnP, by sending long JSON data for firewall lan manage mac2.

Recommendations For TP-Link TL-WR886N versions 6.0 2.3.4 through 7.0 1.1.0, consider restricting access to the lan manage mac2 firewall configuration to prevent exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2018-17006

Affected Products

Tp-Link Tl-Wr886N

PT-2018-13826 · Tp Link · Tp-Link Tl-Wr886N

CVE-2018-17006

Related Identifiers

Affected Products

References · 3