Session Handling Flaw in TP-Link TL-WR840N and TL-WR841N Routers
CVE-2018-11714

9.8CRITICAL

Key Information:

Vendor: Tp-link
Status: Tl-wr840n Firmware
Vendor: CVE Published:; 4 June 2018

Summary

A flaw has been identified in the TP-Link TL-WR840N and TL-WR841N routers concerning improper session handling within the /cgi/ directory. This vulnerability allows an attacker to bypass authentication entirely by manipulating the Referer HTTP header. Specifically, by presenting a crafted request with the header 'Referer: http://192.168.0.1/mainFrame.htm', unauthorized access to sensitive operations can be achieved, posing significant risks to device integrity and network security. Users are recommended to review their router configuration and consider disabling access to the affected CGI scripts to mitigate potential threats.

References

http://blog.securelayer7.net/time-to-disable-tp-link-home...

x_refsource_MISC

https://www.exploit-db.com/exploits/44781/

exploitx_refsource_EXPLOIT-DB

EPSS Score

5% chance of being exploited in the next 30 days.

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Jun 4, 2018