CVE-2019-6971

Name of the Vulnerable Software and Affected Versions TP-Link TL-WR1043ND version V2

Description The issue is related to the web interface management of the TP-Link TL-WR1043ND router's firmware, specifically with the authentication procedure. An attacker can exploit this by sending a specially crafted cookie in an HTTP authentication packet to the router management web interface, allowing full control of the router without needing credentials. This can be done remotely.

Recommendations For TP-Link TL-WR1043ND version V2, as a temporary workaround, consider restricting access to the router management web interface until a patch is available. Avoid using the web interface for critical operations until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.