Tp-Link AC1350 Wireless MU-MIMO Gigabit Access Point Vulnerable to Denial of Service Attack
CVE-2023-49074
7.4HIGH
Key Information
- Vendor
- Tp-link
- Status
- Ac1350 Wireless Mu-mimo Gigabit Access Point (eap225 V3)
- Vendor
- CVE Published:
- 9 April 2024
Summary
A denial of service vulnerability exists in the TDDP functionality of Tp-Link AC1350 Wireless MU-MIMO Gigabit Access Point (EAP225 V3) v5.1.0 Build 20220926. A specially crafted series of network requests can lead to reset to factory settings. An attacker can send a sequence of unauthenticated packets to trigger this vulnerability.
Affected Version(s)
AC1350 Wireless MU-MIMO Gigabit Access Point (EAP225 V3) = v5.1.0 Build 20220926
CVSS V3.1
Score:
7.4
Severity:
HIGH
Confidentiality:
None
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published.
Vulnerability Reserved.
Collectors
NVD DatabaseMitre Database
Credit
Discovered by the Vulnerability Discovery and Research team of Cisco Talos.