CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-48710
https://notcve.org/view.php?id=CVE-2024-48710
15 Oct 2024 — In TP-Link TL-WDR7660 1.0, the wlanTimerRuleJsonToBin function handles the parameter string name without checking it, which can lead to stack overflow vulnerabilities. • https://github.com/sezangel/IOT-vul/blob/main/TPlink/TL-WDR7660/1/readme.md • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-48712
https://notcve.org/view.php?id=CVE-2024-48712
15 Oct 2024 — In TP-Link TL-WDR7660 1.0, the rtRuleJsonToBin function handles the parameter string name without checking it, which can lead to stack overflow vulnerabilities. • https://github.com/sezangel/IOT-vul/blob/main/TPlink/TL-WDR7660/3/readme.md • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-48713
https://notcve.org/view.php?id=CVE-2024-48713
15 Oct 2024 — In TP-Link TL-WDR7660 1.0, the wacWhitelistJsonToBin function handles the parameter string name without checking it, which can lead to stack overflow vulnerabilities. • https://github.com/sezangel/IOT-vul/blob/main/TPlink/TL-WDR7660/4/read.md • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-48714
https://notcve.org/view.php?id=CVE-2024-48714
15 Oct 2024 — In TP-Link TL-WDR7660 v1.0, the guestRuleJsonToBin function handles the parameter string name without checking it, which can lead to stack overflow vulnerabilities. • https://github.com/sezangel/IOT-vul/tree/main/TPlink/TL-WDR7660/2 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 10.0EPSS: 1%CPEs: 2EXPL: 2CVE-2023-46371
https://notcve.org/view.php?id=CVE-2023-46371
24 Oct 2023 — TP-Link device TL-WDR7660 2.0.30 has a stack overflow vulnerability via the function upgradeInfoJsonToBin. El dispositivo TP-Link TL-WDR7660 2.0.30 tiene una vulnerabilidad de desbordamiento de pila a través de la función UpgradeInfoJsonToBin. TP-Link device TL-WDR7660 2.0.30 and TL-WR886N 2.0.12 has a stack overflow vulnerability via the function upgradeInfoJsonToBin. • https://github.com/Jianchun-Ding/CVE-poc-update • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 1CVE-2023-46373
https://notcve.org/view.php?id=CVE-2023-46373
24 Oct 2023 — TP-Link TL-WDR7660 2.0.30 has a stack overflow vulnerability via the function deviceInfoJsonToBincauses. TP-Link TL-WDR7660 2.0.30 tiene una vulnerabilidad de desbordamiento de pila a través de la función deviceInfoJsonToBincauses. • https://github.com/Archerber/bug_submit/blob/main/TP-Link/TL-WDR7660/3.md • CWE-787: Out-of-bounds Write •
CVSS: 8.0EPSS: 0%CPEs: 2EXPL: 1CVE-2021-37774
https://notcve.org/view.php?id=CVE-2021-37774
19 Jan 2023 — An issue was discovered in function httpProcDataSrv in TL-WDR7660 2.0.30 that allows attackers to execute arbitrary code. Se descubrió un problema en la función httpProcDataSrv en TL-WDR7660 2.0.30 que permite a los atacantes ejecutar código arbitrario. • https://github.com/fishykz/TP-POC • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 7.8EPSS: 0%CPEs: 12EXPL: 1CVE-2022-26988
https://notcve.org/view.php?id=CVE-2022-26988
10 May 2022 — TP-Link TL-WDR7660 2.0.30, Mercury D196G 20200109_2.0.4, and Fast FAC1900R 20190827_2.0.2 routers have a stack overflow issue in `MntAte` function. Local users could get remote code execution. Los routers TP-Link TL-WDR7660 versión 2.0.30, Mercury D196G versión 20200109_2.0.4 y Fast FAC1900R versión 20190827_2.0.2 tienen un problema de desbordamiento de pila en la función "MntAte". Los usuarios locales podrían conseguir una ejecución de código remota • http://tp-link.com • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 12EXPL: 1CVE-2022-26987
https://notcve.org/view.php?id=CVE-2022-26987
10 May 2022 — TP-Link TL-WDR7660 2.0.30, Mercury D196G 20200109_2.0.4, and Fast FAC1900R 20190827_2.0.2 routers have a stack overflow issue in `MmtAtePrase` function. Local users could get remote code execution. Los routers TP-Link TL-WDR7660 versión 2.0.30, Mercury D196G versión 20200109_2.0.4 y Fast FAC1900R versión 20190827_2.0.2, presentan un problema de desbordamiento de pila en la función "MmtAtePrase". Los usuarios locales podrían conseguir una ejecución de código remota • http://tp-link.com • CWE-787: Out-of-bounds Write •