A vulnerability classified as problematic has been found in TP-LINK WR840N (affected version not known). This affects some unknown functionality. The manipulation with an unknown input leads to a input validation vulnerability. CWE is classifying the issue as CWE-20. The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly. This is going to have an impact on availability. The summary by CVE is:

TP-Link WR840N devices allow remote attackers to cause a denial of service (connectivity loss) via a series of packets with random MAC addresses.

The bug was discovered 07/16/2018. The weakness was disclosed 07/19/2018 (Website). The advisory is shared at hackingvila.wordpress.com. This vulnerability is uniquely identified as CVE-2018-14336 since 07/16/2018. The attack can only be initiated within the local network. No form of authentication is needed for exploitation. Technical details are unknown but a public exploit is available.

The exploit is shared for download at exploit-db.com. It is declared as proof-of-concept. The vulnerability was handled as a non-public zero-day exploit for at least 3 days. During that time the estimated underground price was around $0-$5k.

It is possible to mitigate the weakness by firewalling .

The vulnerability is also documented in the vulnerability database at Exploit-DB (45064). Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Productinfo

Vendor

• TP-LINK

Name

• WR840N

License

• commercial

CPE 2.3info

• 🔍
• 🔍

CPE 2.2info

• 🔍
• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Discussion