PT-2026-25392 · Tp Link Systems+1 · Tl-Wr802N V4+5
Do4Choo
·
Published
2026-03-13
·
Updated
2026-03-16
·
CVE-2026-3227
CVSS v4.0
8.5
High
| Vector | AV:A/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
Name of the Vulnerable Software and Affected Versions
TP-Link TL-WR802N version 4
TP-Link TL-WR841N version 14
TP-Link TL-WR840N version 6
Description
A command injection issue exists due to improper handling of special characters within OS commands. The issue is present in the router configuration import function, allowing an authenticated attacker to upload a specially crafted configuration file. This results in the execution of OS commands with root privileges during port-trigger processing. Successful exploitation allows an authenticated attacker to execute system commands with root privileges, leading to full device compromise.
Recommendations
TP-Link TL-WR802N version 4: At the moment, there is no information about a newer version that contains a fix for this vulnerability.
TP-Link TL-WR841N version 14: At the moment, there is no information about a newer version that contains a fix for this vulnerability.
TP-Link TL-WR840N version 6: At the moment, there is no information about a newer version that contains a fix for this vulnerability.
OS Command Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Tl-Wr802N V4
Tl-Wr840N V6
Tl-Wr841N V14
Tl-Wr802N Firmware
Tl-Wr840N Firmware
Tl-Wr841N Firmware