CVE-2018-16119

moderate-risk

Published 2019-06-20

Stack-based buffer overflow in the httpd server of TP-Link WR1043nd (Firmware Version 3) allows remote attackers to execute arbitrary code via a malicious MediaServer request to /userRpm/MediaServerFoldersCfgRpm.htm.

Do I need to act?

42.6% chance of exploitation in next 30 days

EPSS score — higher than 57% of all CVEs

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 7.2/10 High

NETWORK / LOW complexity

Affected Products (1)

Tl-Wr1043Nd Firmware

Affected Vendors

Tp-Link

References (4)

Vendor Advisory http://tp-link.com/

Exploit https://www.secsignal.org/news/exploiting-routers-just-another-tp-link-0day

Vendor Advisory http://tp-link.com/

Exploit https://www.secsignal.org/news/exploiting-routers-just-another-tp-link-0day

/ 100

moderate-risk

Severity 26/34 · High

Exploitability 17/34 · Moderate

Exposure 5/34 · Minimal