TP-Link.Router.Referer.Handling.CSRF
Description
This indicates an attack attempt to exploit a Cross Site Request Forgery vulnerability in TP-Link Routers.
The vulnerability is due to insufficient sanitizing of user supplied inputs in the application. An attacker may exploit this to perform unauthorized action on the affected routers.
Affected Products
TP-Link TL-WR841N v13 Firmware 0.9.1 4.16 v0001.0 Build 180119 Rel.65243n
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Upgrade to the latest version available from the website.
https://www.tp-link.com/us/download-center.html
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2019-06-06 | 14.627 | Severity:critical:high |