CVE-2023-36356

Name of the Vulnerable Software and Affected Versions TP-Link TL-WR940N versions V2 through V6 TP-Link TL-WR841N version V8 TP-Link TL-WR941ND version V5 TP-Link TL-WR740N versions V1 through V2

Description The issue is related to a buffer read out-of-bounds in the VirtualServerRpm component, accessible via the /userRpm/VirtualServerRpm endpoint. This allows attackers to cause a Denial of Service (DoS) by sending a crafted GET request. The vulnerability is exploited by manipulating the Changed parameter, leading to a memory buffer overflow.

Recommendations For TP-Link TL-WR940N versions V2 through V6, consider disabling access to the /userRpm/VirtualServerRpm endpoint until a patch is available. For TP-Link TL-WR841N version V8, restrict the use of the VirtualServerRpm component to minimize the risk of exploitation. For TP-Link TL-WR941ND version V5, avoid using the Changed parameter in the affected API endpoint until the issue is resolved. For TP-Link TL-WR740N versions V1 through V2, limit access to the vulnerable component to prevent potential attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.