CVE-2022-30024
 
> [Description]
> TPLink TL-WR841N V12 (firmware version 3.16.9) devices allow an authenticated allows remote code execution via
> GET request to the page for the System Tools of the Wi-Fi network.
> 
> 
>
> ------------------------------------------
>
> [VulnerabilityType Other]
> Buffer overflow
>
> ------------------------------------------
>
> [Vendor of Product]
> TPLink
>
> ------------------------------------------
>
> [Affected Product Code Base]
> TPLink TL-WR841N from V12 - version affected: 3.16.9,  version fix: None
>
> ------------------------------------------
>
> [Affected Component]
> The Web service
>
> ------------------------------------------
>
> [Attack Type]
> Remote
>
> ------------------------------------------
>
> [Impact Code execution]
> true
>
> ------------------------------------------
>
> [Attack Vectors]
> Send payload to Web service
>
> ------------------------------------------
>
> [Reference]
> https://www.tp-link.com/us/home-networking/wifi-router/tl-wr841n/
>
> ------------------------------------------
>
> [Has vendor confirmed or acknowledged the vulnerability?]
> true
>
> ------------------------------------------
>
> [Discoverer]
> Cuongtm
 
CVE-2022-30024