Critical Vulnerability in TP-Link VN020 F3v(T) TT_V6.2.1021 Allows for Local Network Denial of Service

CVE-2024-12342

6.5MEDIUM

Key Information

Vendor
Tp-link
Status
Vn020 F3v(t)
Vendor
CVE Published:
8 December 2024

Summary

A vulnerability was found in TP-Link VN020 F3v(T) TT_V6.2.1021. It has been rated as critical. This issue affects some unknown processing of the file /control/WANIPConnection of the component Incomplete SOAP Request Handler. The manipulation leads to denial of service. The attack can only be initiated within the local network. The exploit has been disclosed to the public and may be used.

Affected Version(s)

VN020 F3v(T) = TT_V6.2.1021

Refferences

https://vuldb.com/?id.287261
vdb-entry
https://vuldb.com/?ctiid.287261
signaturepermissions-required
https://github.com/Zephkek/TP-WANPunch/blob/main/README.md
exploit
https://www.tp-link.com/
product

CVSS V3.1

Score:
6.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
High
Attack Vector:
Adjacent Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Collectors

NVD DatabaseMitre Database
.