CVE-2022-41540
Severity Score
5.9
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
1
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
The web app client of TP-Link AX10v1 V1_211117 uses hard-coded cryptographic keys when communicating with the router. Attackers who are able to intercept the communications between the web client and router through a man-in-the-middle attack can then obtain the sequence key via a brute-force attack, and access sensitive information.
El cliente de la aplicación web de TP-Link AX10v1 versión V1_211117, usa claves criptográficas embebidas cuando es comunicado con el router. Los atacantes que son capaces de interceptar las comunicaciones entre el cliente web y el router mediante de un ataque de tipo man-in-the-middle pueden entonces obtener la clave de secuencia por medio de un ataque de fuerza bruta, y acceder a información confidencial
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2022-09-26 CVE Reserved
- 2022-10-18 CVE Published
- 2024-08-03 CVE Updated
- 2024-08-03 First Exploit
- 2024-08-10 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-798: Use of Hard-coded Credentials
CAPEC
References (2)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|---|---|
| https://github.com/efchatz/easy-exploits/tree/main/Web/TP-Link/Offline-decryption | 2024-08-03 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://www.tp-link.com/us/support/download/archer-ax10/v1/#Firmware | 2022-10-20 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Tp-link Search vendor "Tp-link" | Ax10 Firmware Search vendor "Tp-link" for product "Ax10 Firmware" | v1_211117 Search vendor "Tp-link" for product "Ax10 Firmware" and version "v1_211117" | - |
Affected
| in | Tp-link Search vendor "Tp-link" | Ax10 Search vendor "Tp-link" for product "Ax10" | 1.0 Search vendor "Tp-link" for product "Ax10" and version "1.0" | - |
Safe
|