CVE-2021-29302

Name of the Vulnerable Software and Affected Versions: TP-Link TL-WR802N(US) versions prior to 2020.06 Archer C50v5 US version 4 200 or earlier

Description: The issue is related to a buffer overflow in the httpd process, specifically in the body message. This can be exploited by an attacker sending a crafted message through the network, potentially leading to remote code execution and allowing the attacker to gain shell access to the router.

Recommendations: For TP-Link TL-WR802N(US) versions prior to 2020.06, update to a version released after 2020.06 to resolve the issue. For Archer C50v5 US version 4 200 or earlier, update to a version later than 4 200 to fix the problem. As a temporary workaround, consider restricting network access to the router until a patch is applied.