How severe is CVE-2022-46428?

CVE-2022-46428 has a CVSS v3 score of 4.8 (MEDIUM).

CVE-2022-46428

Name: tl-wr1043nd_v1
Author: tp-link

4.8MEDIUM

TP-Link TL-WR1043ND V1 3.13.15 and earlier allows authenticated attackers to execute arbitrary code or cause a Denial of Service (DoS) via uploading a crafted firmware image during the firmware update

Published: 12/20/2022Updated: 4/16/2025

Description

TP-Link TL-WR1043ND V1 3.13.15 and earlier allows authenticated attackers to execute arbitrary code or cause a Denial of Service (DoS) via uploading a crafted firmware image during the firmware update process.

AI AnalysisPowered by AI

Affected Products

tp-linktl-wr1043nd_v1_firmware

tp-linktl-wr1043nd_v1

References

https://hackmd.io/%40slASVrz_SrW7NQCsunofeA/S1hP34Hvj
https://www.tp-link.com/us/press/security-advisory/
Vendor Advisory
https://hackmd.io/%40slASVrz_SrW7NQCsunofeA/S1hP34Hvj
https://www.tp-link.com/us/press/security-advisory/
Vendor Advisory