How severe is CVE-2022-41541?

CVE-2022-41541 has a CVSS v3 score of 8.1 (HIGH).

CVE-2022-41541

Name: ax10
Author: tp-link

8.1HIGH

TP-Link AX10v1 V1_211117 allows attackers to execute a replay attack by using a previously transmitted encrypted authentication message and valid authentication token. Attackers are able to login to t

Published: 10/18/2022Updated: 5/15/2025

Description

TP-Link AX10v1 V1_211117 allows attackers to execute a replay attack by using a previously transmitted encrypted authentication message and valid authentication token. Attackers are able to login to the web application as an admin user.

AI AnalysisPowered by AI

Affected Products

tp-linkax10_firmware

v1_211117

tp-linkax10

1.0

References

https://github.com/efchatz/easy-exploits/tree/main/Web/TP-Link/Replay
ExploitThird Party Advisory
https://www.tp-link.com/us/support/download/archer-ax10/v1/#Firmware
ProductVendor Advisory
https://github.com/efchatz/easy-exploits/tree/main/Web/TP-Link/Replay
ExploitThird Party Advisory
https://www.tp-link.com/us/support/download/archer-ax10/v1/#Firmware
ProductVendor Advisory