Remote [RCE] TP-LINK TL-WR940N / TL-WR941ND, CVE-2019-6989

May 2, 2023
CVE-2019-6989 is a vulnerability in the TP-Link TL-WR940N and TL-WR941ND routers that could allow an attacker to execute remote code on the device. This vulnerability affects firmware version 3.16.9 build 150310 and earlier versions of these routers.

The vulnerability exists due to improper input validation of the HTTP header. An attacker could exploit this vulnerability by sending a specially crafted HTTP request to the router, which could result in the execution of arbitrary code on the device.
You must reply before you can see the hidden data contained here.