Cleartext Transmission Vulnerability in TP-Link TL-WPA4220
CVE-2021-28858
5.5MEDIUM
What is CVE-2021-28858?
The TP-Link TL-WPA4220 device, specifically version 4.0.2 Build 20180308 Rel.37064, is susceptible to a vulnerability due to its failure to implement SSL encryption by default. This weakness allows an attacker on the same local network to intercept and monitor unencrypted traffic, potentially gaining access to cookies and other sensitive user data. As a result, the integrity and confidentiality of communications are compromised, posing significant security risks for users.