Tp-Link tl-wdr7660_firmware - 6 CVEs, 2 Versions

CVE-2024-48713

In TP-Link TL-WDR7660 1.0, the wacWhitelistJsonToBin function handles the parameter string name without checking it, which can lead to stack overflow vulnerabilities.

MEDIUM Oct 15, 2024

CVE-2024-48712

In TP-Link TL-WDR7660 1.0, the rtRuleJsonToBin function handles the parameter string name without checking it, which can lead to stack overflow vulnerabilities.

MEDIUM Oct 15, 2024

CVE-2024-48710

In TP-Link TL-WDR7660 1.0, the wlanTimerRuleJsonToBin function handles the parameter string name without checking it, which can lead to stack overflow vulnerabilities.

MEDIUM Oct 15, 2024

CVE-2024-48714

In TP-Link TL-WDR7660 v1.0, the guestRuleJsonToBin function handles the parameter string name without checking it, which can lead to stack overflow vulnerabilities.

MEDIUM Oct 15, 2024

CVE-2023-46371

TP-Link device TL-WDR7660 2.0.30 and TL-WR886N 2.0.12 has a stack overflow vulnerability via the function upgradeInfoJsonToBin.

UNKNOWN Oct 24, 2023

CVE-2023-46373

TP-Link TL-WDR7660 2.0.30 has a stack overflow vulnerability via the function deviceInfoJsonToBincauses.

UNKNOWN Oct 24, 2023

tl-wdr7660_firmware

Versions

1.0

2.0.30

Recent CVEs

CVE-2024-48713

CVE-2024-48712

CVE-2024-48710

CVE-2024-48714

CVE-2023-46371

CVE-2023-46373