CVE-2023-49074

Name of the Vulnerable Software and Affected Versions Tp-Link AC1350 Wireless MU-MIMO Gigabit Access Point (EAP225 V3) version 5.1.0 Build 20220926 Tp-Link N300 (affected versions not specified)

Description A denial of service issue exists in the TDDP functionality, related to the use of dangerous methods or functions. This can be exploited by a remote attacker, who can send specially crafted network packets to trigger the issue, potentially leading to a reset to factory settings. An attacker can send a sequence of unauthenticated packets to exploit this issue.

Recommendations For Tp-Link AC1350 Wireless MU-MIMO Gigabit Access Point (EAP225 V3) version 5.1.0 Build 20220926: As a temporary workaround, consider restricting access to the TDDP functionality until a patch is available. For Tp-Link N300: At the moment, there is no information about a newer version that contains a fix for this vulnerability.