Unknown
CVE-2020-35575
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
Add References:
CVE-2020-35575
MITRE ATT&CK
Collection
Command and Control
Credential Access
Defense Evasion
Discovery
Execution
Exfiltration
Impact
Initial Access
Lateral Movement
Persistence
Privilege Escalation
Topic Tags
Description
A password-disclosure issue in the web interface on certain TP-Link devices allows a remote attacker to get full administrative access to the web panel. This affects WA901ND devices before 3.16.9(201211) beta, and Archer C5, Archer C7, MR3420, MR6400, WA701ND, WA801ND, WDR3500, WDR3600, WE843N, WR1043ND, WR1045ND, WR740N, WR741ND, WR749N, WR802N, WR840N, WR841HP, WR841N, WR842N, WR842ND, WR845N, WR940N, WR941HP, WR945N, WR949N, and WRD4300 devices.
Add Assessment
No one has assessed this topic. Be the first to add your voice to the community.
CVSS V3 Severity and Metrics
General Information
Vendors
Products
- archer c5 firmware -,
- archer c7 firmware -,
- mr3420 firmware -,
- mr6400 firmware -,
- wa701nd firmware -,
- wa801nd firmware -,
- wa901nd firmware,
- wdr3500 firmware -,
- wdr3600 firmware -,
- we843n firmware -,
- wr1043nd firmware -,
- wr1045nd firmware -,
- wr740n firmware -,
- wr741nd firmware -,
- wr749n firmware -,
- wr802n firmware -,
- wr840n firmware -,
- wr841hp firmware -,
- wr841n firmware -,
- wr842n firmware -,
- wr842nd firmware -,
- wr845n firmware -,
- wr940n firmware -,
- wr941hp firmware -,
- wr945n firmware -,
- wr949n firmware -,
- wrd4300 firmware -
References
Additional Info
Technical Analysis
Report as Emergent Threat Response
Report as Zero-day Exploit
Report as Exploited in the Wild
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
