Information disclosure

2021-06-1522:15:00

PRIOn knowledge base

www.prio-n.com

5.5 Medium

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

17.8%

JSON

TP-Link’s TL-WPA4220 4.0.2 Build 20180308 Rel.37064 does not use SSL by default. Attacker on the local network can monitor traffic and capture the cookie and other sensitive information.

CPENameOperatorVersion
tl-wpa4220_firmwareeq4.0.2 build20180308rel.37064

CPE	Name	Operator	Version
	tl-wpa4220_firmware	eq	4.0.2 build20180308rel.37064

References

yunus-shn.medium.com/tp-links-tl-wpa4220-v4-0-cleartext-transmission-of-sensitive-information-40357c778b84