CVE-2023-46522

Name of the Vulnerable Software and Affected Versions TP-LINK TL-WR886N version 7.0 3.0.14 Build 221115 Rel.56908n.bin TP-LINK TL-WDR7660 version 2.0.30

Description The issue is related to a stack overflow via the deviceInfoRegister function, which can be exploited by a remote attacker to execute arbitrary code. This is caused by a buffer overflow in memory, allowing data to be read beyond the buffer's boundaries.

Recommendations For TP-LINK TL-WR886N version 7.0 3.0.14 Build 221115 Rel.56908n.bin, consider disabling the deviceInfoRegister function until a patch is available. For TP-LINK TL-WDR7660 version 2.0.30, consider disabling the deviceInfoRegister function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.