cve/2020/CVE-2020-8423.md

CVE-2020-8423

Description

A buffer overflow in the httpd daemon on TP-Link TL-WR841N V10 (firmware version 3.16.9) devices allows an authenticated remote attacker to execute arbitrary code via a GET request to the page for the configuration of the Wi-Fi network.

POC

Reference

• https://ktln2.org/2020/03/29/exploiting-mips-router/
• https://ktln2.org/2020/03/29/exploiting-mips-router/

Github

• https://github.com/ARPSyndicate/cvemon
• https://github.com/CPSeek/CPSeeker
• https://github.com/kal1x/iotvulhub
• https://github.com/lnversed/CVE-2020-8423