PT-2025-8752 · Tp Link · Tp-Link Tl-Wr845N

Published

2025-02-26

Updated

2025-03-19

CVE-2024-57040

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions TP-Link TL-WR845N versions TL-WR845N(UN) V4 200909 through TL-WR845N(UN) V4 190219

Description A hardcoded password for the root account was discovered, which can be obtained via a brute force attack.

Recommendations For versions TL-WR845N(UN) V4 200909 through TL-WR845N(UN) V4 190219, consider changing the default root password to a strong and unique one as soon as possible to prevent unauthorized access.

Fix

Using Hardcoded Credentials

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-798

Related Identifiers

CVE-2024-57040

Affected Products

Tp-Link Tl-Wr845N

PT-2025-8752 · Tp Link · Tp-Link Tl-Wr845N

CVE-2024-57040

Weakness Enumeration

Related Identifiers

Affected Products

References · 15