Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2018-11714
HistoryOct 03, 2022 - 4:21 p.m.

CVE-2018-11714

2022-10-0316:21:50
mitre
www.cve.org
tp-link
improper session handling
authentication bypass
security vulnerability

9.5 High

AI Score

Confidence

High

0.415 Medium

EPSS

Percentile

97.3%

JSON

An issue was discovered on TP-Link TL-WR840N v5 00000005 0.9.1 3.16 v0001.0 Build 170608 Rel.58696n and TL-WR841N v13 00000013 0.9.1 4.16 v0001.0 Build 170622 Rel.64334n devices. This issue is caused by improper session handling on the /cgi/ folder or a /cgi file. If an attacker sends a header of β€œReferer: http://192.168.0.1/mainFrame.htm” then no authentication is required for any action.

Related

nvd 1
cve 1
prion 1
nvd
nvd
CVE-2018-11714
2018-06-04 14:29:00
cve
cve
CVE-2018-11714
2022-10-03 16:21:50
prion
prion
Authentication flaw
2018-06-04 14:29:00

9.5 High

AI Score

Confidence

High

0.415 Medium

EPSS

Percentile

97.3%

JSON
Related for CVELIST:CVE-2018-11714
nvd1cve1prion1