CVE-2023-23040

Name of the Vulnerable Software and Affected Versions TP-Link router TL-WR940N V6 version 3.19.1 Build 180119

Description The issue is related to the use of a deprecated MD5 algorithm to hash the admin password used for basic authentication. This could allow a remote attacker to gain unauthorized access to protected information or cause a denial of service.

Recommendations For TP-Link router TL-WR940N V6 version 3.19.1 Build 180119, consider changing the admin password to a stronger one and avoid using basic authentication until a patch is available. As a temporary workaround, restrict access to the router's admin interface to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.