Denial of Service Vulnerability in TP-Link TL-WR840N Wireless Router
CVE-2018-15840

7.5HIGH

Key Information:

Vendor: Tp-link
Status: Tl-wr840n Firmware
Vendor: CVE Published:; 29 March 2019

What is CVE-2018-15840?

The TP-Link TL-WR840N wireless router is susceptible to a Denial of Service (DoS) attack due to its handling of fragmented packets. Attackers can exploit this vulnerability by sending specially crafted packets to the device, which may result in a significant disruption of network services. This exploit can be executed remotely, allowing malicious actors to incapacitate the router by utilizing commands such as 'nmap -f'. As a result, users might experience a complete networking outage, severely impacting connectivity and performance.

References

https://hackingvila.wordpress.com/2019/02/17/tp-link-wire...

x_refsource_MISC

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 29, 2019
Vulnerability Reserved
Aug 24, 2018

Tp-link

What is CVE-2018-15840?

References

CVSS V3.1

Timeline