Path Traversal in Tp-link Tl-wr841n

CVE-2012-6276

Directory traversal vulnerability in the web-based management interface on the TP-LINK TL-WR841N router with firmware 3.13.9 build 120201 Rel.54965n and earlier allows remote attackers to read arbitrary files via the URL parameter.

Vulnerability class: Path Traversal (Directory Traversal)

EPSS: 0.094 (93.0th percentile) — read the EPSS interpretation.

Affected products

Tp-link Tl-wr841n
Tp-link Tl-wr841n_firmware — versions 3.13.9
N/a — versions n/a

Weakness classification (CWE)

CWE-22 — Path Traversal

References

VU#185100 (x_refsource_CERT-VN, US Government Resource, third-party-advisory)