What is CVE-2012-5687?

CVE-2012-5687 is a vulnerability in Tp-link Tl-wr841n, classified under Path Traversal. Published 2012-11-01.

Is CVE-2012-5687 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Path Traversal in Tp-link Tl-wr841n

CVE-2012-5687

Directory traversal vulnerability in the web-based management feature on the TP-LINK TL-WR841N router with firmware 3.13.9 build 120201 Rel.54965n and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the PATH_I…

Vulnerability class: Path Traversal (Directory Traversal)

EPSS: 0.675 (98.6th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

CWE-22 — Path Traversal

Public proof-of-concept exploits

rapid7/metasploit-framework

References

cve@mitre.org (x_refsource_MISC)
20121031 [BUGTRAQ]Security Advisory - TP-LINK TL-WR841N LFI - [UPDATE] (mailing-list, Exploit, x_refsource_BUGTRAQ, x_refsource_MISC)
tplink-url-file-include(79662) (vdb-entry, x_refsource_XF)

Frequently asked questions

What is CVE-2012-5687?: CVE-2012-5687 is a vulnerability in Tp-link Tl-wr841n, classified under Path Traversal. Published 2012-11-01.
Is CVE-2012-5687 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.