CVE-2021-3275
TP-Link Cross Site Scripting
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
3Exploited in Wild
-Decision
Descriptions
Unauthenticated stored cross-site scripting (XSS) exists in multiple TP-Link products including WIFI Routers (Wireless AC routers), Access Points, ADSL + DSL Gateways and Routers, which affects TD-W9977v1, TL-WA801NDv5, TL-WA801Nv6, TL-WA802Nv5, and Archer C3150v2 devices through the improper validation of the hostname. Some of the pages including dhcp.htm, networkMap.htm, dhcpClient.htm, qsEdit.htm, and qsReview.htm and use this vulnerable hostname function (setDefaultHostname()) without sanitization.
Se presenta una vulnerabilidad de tipo cross-site scripting (XSS) almacenado no autenticado en múltiples productos de TP-Link, incluyendo WIFI Routers (enrutadores Wireless AC), Access Points, ADSL + DSL Gateways and Routers, que afectan a dispositivos TD-W9977v1, TL-WA801NDv5, TL-WA801Nv6, TL-WA802Nv5, y Archer C3150v2, por medio de la comprobación inapropiada del nombre de host. Algunas de las páginas, incluyendo dhcp.htm, networkMap.htm, dhcpClient.htm, qsEdit.htm, y qsReview.htm, usan esta función vulnerable de nombre de host (setDefaultHostname()) sin saneamiento.
Multiple TP-Link devices suffer from an unauthenticated persistent cross site scripting vulnerability. Affected models include TD-W9977, TL-WA801ND, TL-WA801N, TL-WR802N, and Archer-C3150.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2021-01-22 CVE Reserved
- 2021-03-26 CVE Published
- 2023-12-10 EPSS Updated
- 2024-08-03 CVE Updated
- 2024-08-03 First Exploit
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CAPEC
References (4)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|---|---|
| http://packetstormsecurity.com/files/161989/TP-Link-Cross-Site-Scripting.html | 2024-08-03 | |
| https://github.com/smriti548/CVE/blob/main/CVE-2021-3275 | 2024-08-03 | |
| https://seclists.org/fulldisclosure/2021/Mar/67 | 2024-08-03 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://www.tp-link.com | 2021-04-01 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Tp-link Search vendor "Tp-link" | Td-w9977 Firmware Search vendor "Tp-link" for product "Td-w9977 Firmware" | v1_0.1.0_0.9.1_up_boot\(161123\)_2016-11-23_15.36.15 Search vendor "Tp-link" for product "Td-w9977 Firmware" and version "v1_0.1.0_0.9.1_up_boot\(161123\)_2016-11-23_15.36.15" | - |
Affected
| in | Tp-link Search vendor "Tp-link" | Td-w9977 Search vendor "Tp-link" for product "Td-w9977" | - | - |
Safe
|
| Tp-link Search vendor "Tp-link" | Tl-wa801nd Firmware Search vendor "Tp-link" for product "Tl-wa801nd Firmware" | v5_us_0.9.1_3.16_up_boot\[170905-rel56404\] Search vendor "Tp-link" for product "Tl-wa801nd Firmware" and version "v5_us_0.9.1_3.16_up_boot\[170905-rel56404\]" | - |
Affected
| in | Tp-link Search vendor "Tp-link" | Tl-wa801nd Search vendor "Tp-link" for product "Tl-wa801nd" | - | - |
Safe
|
| Tp-link Search vendor "Tp-link" | Tl-wa801n Firmware Search vendor "Tp-link" for product "Tl-wa801n Firmware" | v6_eu_0.9.1_3.16_up_boot\[200116-rel61815\] Search vendor "Tp-link" for product "Tl-wa801n Firmware" and version "v6_eu_0.9.1_3.16_up_boot\[200116-rel61815\]" | - |
Affected
| in | Tp-link Search vendor "Tp-link" | Tl-wa801n Search vendor "Tp-link" for product "Tl-wa801n" | - | - |
Safe
|
| Tp-link Search vendor "Tp-link" | Tl-wr802n Firmware Search vendor "Tp-link" for product "Tl-wr802n Firmware" | v4_us_0.9.1_3.17_up_boot\[200421-rel38950\] Search vendor "Tp-link" for product "Tl-wr802n Firmware" and version "v4_us_0.9.1_3.17_up_boot\[200421-rel38950\]" | - |
Affected
| in | Tp-link Search vendor "Tp-link" | Tl-wr802n Search vendor "Tp-link" for product "Tl-wr802n" | - | - |
Safe
|
| Tp-link Search vendor "Tp-link" | Archer-c3150 Firmware Search vendor "Tp-link" for product "Archer-c3150 Firmware" | v2_170926 Search vendor "Tp-link" for product "Archer-c3150 Firmware" and version "v2_170926" | - |
Affected
| in | Tp-link Search vendor "Tp-link" | Archer-c3150 Search vendor "Tp-link" for product "Archer-c3150" | - | - |
Safe
|