Cross Site Scripting Vulnerability in TP-Link TL-WR841N Router
CVE-2022-42202

6.1MEDIUM

Key Information:

Vendor: Tp-link
Status: Tl-wr841n Firmware
Vendor: CVE Published:; 18 October 2022

Summary

The TP-Link TL-WR841N router version 8.0 with firmware 4.17.16 Build 120201 Rel.54750n is vulnerable to Cross Site Scripting (XSS) attacks. This vulnerability allows an attacker to inject malicious scripts into web pages viewed by users, potentially compromising the integrity of user data and session information. When exploited, it can lead to unauthorized actions being performed on behalf of users without their awareness, posing a serious threat to the security of personal and sensitive information.

References

https://www.yuque.com/docs/share/b85b8c6f-60ea-4d5c-acc5-...

CVSS V3.1

Score:

6.1

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Changed

Timeline

Vulnerability published
Oct 18, 2022
Vulnerability Reserved
Oct 3, 2022