CVE-2023-39748

Name of the Vulnerable Software and Affected Versions TP-Link TL-WR1041N version V2

Description The issue is related to the component /userRpm/NetworkCfgRpm and allows attackers to cause a Denial of Service (DoS) via a crafted GET request to the "GET" endpoint. This is due to incorrect clearance or release of resources. The exploitation of this issue can allow a remote attacker to cause a service disruption.

Recommendations For TP-Link TL-WR1041N version V2, as a temporary workaround, consider restricting access to the /userRpm/NetworkCfgRpm component until a patch is available. Avoid using the vulnerable component to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.