Firmware Modification Vulnerability in TP-Link TL-WR743ND V1 Allows for Arbitrary Code Execution and DoS

Firmware Modification Vulnerability in TP-Link TL-WR743ND V1 Allows for Arbitrary Code Execution and DoS

CVE-2022-46432 · HIGH Severity

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

An exploitable firmware modification vulnerability was discovered on TP-Link TL-WR743ND V1. An attacker can conduct a MITM (Man-in-the-Middle) attack to modify the user-uploaded firmware image and bypass the CRC check, allowing attackers to execute arbitrary code or cause a Denial of Service (DoS). This affects v3.12.20 and earlier.

Learn more about our User Device Pen Test.