CVE-2022-25072

Name of the Vulnerable Software and Affected Versions TP-Link Archer A54 (US) versions prior to the fixed version

Description The issue is related to a buffer overflow in the DM Fillobjbystr() function, which can be exploited by a remote attacker to execute arbitrary code. This is a result of data being written beyond the buffer's boundaries in memory.

Recommendations For TP-Link Archer A54 (US) versions prior to the fixed version, as a temporary workaround, consider disabling the DM Fillobjbystr() function until a patch is available. Restrict access to the vulnerable function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.