CVE-2015-3035

7.5HIGH

Key Information:

Vendor
Tp-link
Status
Tl-wr841n \(9.0\) Firmware
Vendor
CVE Published:
22 April 2015

Badges

πŸ‘Ύ Exploit Exists🟣 EPSS 94%πŸ¦… CISA Reported

Summary

Directory traversal vulnerability in TP-LINK Archer C5 (1.2) with firmware before 150317, C7 (2.0) with firmware before 150304, and C8 (1.0) with firmware before 150316, Archer C9 (1.0), TL-WDR3500 (1.0), TL-WDR3600 (1.0), and TL-WDR4300 (1.0) with firmware before 150302, TL-WR740N (5.0) and TL-WR741ND (5.0) with firmware before 150312, and TL-WR841N (9.0), TL-WR841N (10.0), TL-WR841ND (9.0), and TL-WR841ND (10.0) with firmware before 150310 allows remote attackers to read arbitrary files via a .. (dot dot) in the PATH_INFO to login/.

CISA Reported

CISA provides regional cyber and physical services to support security and resilience across the United States. CISA monitor the most dangerious vulnerabilities and have identifed as being exploited but is not known by the CISA to be used in ransomware campaigns. This is subject to change at pace

The CISA's recommendation is: Apply updates per vendor instructions.

References

http://www.tp-link.com/en/download/Archer-C9_V1.html#Firm...
x_refsource_CONFIRM
http://www.tp-link.com/en/download/Archer-C7_V2.html#Firm...
x_refsource_CONFIRM
http://www.tp-link.com/en/download/TL-WR740N_V5.html#Firm...
x_refsource_CONFIRM

EPSS Score

94% chance of being exploited in the next 30 days.

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • πŸ‘Ύ

    Exploit known to exist

  • πŸ¦…

    CISA Reported

  • Vulnerability published

  • Vulnerability Reserved

.