Description

Access of Uninitialized Pointer vulnerability in TP-Link WR940N and WR941ND allows local unauthenticated attackers the ability to execute DoS attack and potentially arbitrary code execution under the context of the ‘root’ user.This issue affects WR940N and WR941ND: ≤ WR940N v5 3.20.1 Build 200316, ≤ WR941ND v6 3.16.9 Build 151203.

Related CPE's

Could not find any relations

References

https://blog.exodusintel.com/2022/06/23/tp-link-wr940n-wr941nd-uninitialized-pointer-vulnerability/

https://www.tp-link.com/us/support/download/tl-wr940n/v5/#Firmware

https://www.tp-link.com/us/support/download/tl-wr941nd/#Firmware

https://www.tp-link.com/us/support/faq/4848/

Weaknesses

f23511db-6c3e-4e32-a477-6aa17d310630

Secondary
CWE-824

CVSS impact metrics

Missing metrics for CVSS V

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

f23511db-6c3e-4e32-a477-6aa17d310630

Vulnerability status

Awaiting analysis

Published

2025-12-18T19:16:21.680

25 hours ago

Last modified

2025-12-19T18:00:18.330

3 hours ago