cvedb.io
CVE-2017-13772
HIGH · CVSS 8.8
EPSS exploitation probability: 0%
Published 2017-10-23T18:29:00.883 · Last modified 2026-06-17T01:05:09.077

Summary

Multiple stack-based buffer overflows in TP-Link WR940N WiFi routers with hardware version 4 allow remote authenticated users to execute arbitrary code via the (1) ping_addr parameter to PingIframeRpm.htm or (2) dnsserver2 parameter to WanStaticIpV6CfgRpm.htm.

Affected products

tp-link — wr940n_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when tp-link ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.