Tl-wr940n firmware
This hub aggregates every CVE we track for Tl-wr940n firmware, a product in the networking infrastructure space. Use it to gauge the current risk picture and drill into individual advisories.
21
CVEs tracked
1
Critical
18
High
1
In CISA KEV
Severity distribution
HIGH18MEDIUM2CRITICAL1
Monthly trend
0
0
0
0
0
0
1
0
0
0
0
1
0
0
0
0
0
0
0
0
0
0
0
2
2024-072026-06
Latest CVEs
The 15 most recently published vulnerabilities affecting Tl-wr940n firmware.
- CVE-2026-11409OS Command Injection in IPv6 PPPoE Configuration in TP-Link TL-WR940N7.2
- CVE-2026-11410OS Command Injection in BigPond Cable (BPA) Configuration in TP-Link TL-WR940N7.2
- CVE-2025-6151TP-Link TL-WR940N, TL-WR841N WanSlaacCfgRpm.htm buffer overflow8.8
- CVE-2024-54887TP-Link TL-WR940N V3 and V4 with firmware 3.16.9 and earlier contain a buffer overflow via the dnsserver1 and dnsserver2 parameters at /userRpm/Wan6to4TunnelCfgRpm.htm. This vulnerability allows an...8.0
- CVE-2023-36359TP-Link TL-WR940N V4, TL-WR841N V8/V10, TL-WR940N V2/V3 and TL-WR941ND V5/V6 were discovered to contain a buffer overflow in the component /userRpm/QoSRuleListRpm. This vulnerability allows attacke...7.5
- CVE-2023-36357An issue in the /userRpm/LocalManageControlRpm component of TP-Link TL-WR940N V2/V4/V6, TL-WR841N V8/V10, and TL-WR941ND V5 allows attackers to cause a Denial of Service (DoS) via a crafted GET req...7.7
- CVE-2023-36354TP-Link TL-WR940N V4, TL-WR841N V8/V10, TL-WR740N V1/V2, TL-WR940N V2/V3, and TL-WR941ND V5/V6 were discovered to contain a buffer overflow in the component /userRpm/AccessCtrlTimeSchedRpm. This vu...7.5
- CVE-2023-36358TP-Link TL-WR940N V2/V3/V4, TL-WR941ND V5/V6, TL-WR743ND V1 and TL-WR841N V8 were discovered to contain a buffer overflow in the component /userRpm/AccessCtrlAccessTargetsRpm. This vulnerability al...7.7
- CVE-2023-36355TP-Link TL-WR940N V4 was discovered to contain a buffer overflow via the ipStart parameter at /userRpm/WanDynamicIpV6CfgRpm. This vulnerability allows attackers to cause a Denial of Service (DoS) v...9.9
- CVE-2023-36356TP-Link TL-WR940N V2/V4/V6, TL-WR841N V8, TL-WR941ND V5, and TL-WR740N V1/V2 were discovered to contain a buffer read out-of-bounds via the component /userRpm/VirtualServerRpm. This vulnerability a...7.7
- CVE-2023-33536TP-Link TL-WR940N V2/V4, TL-WR841N V8/V10, and TL-WR740N V1/V2 was discovered to contain a buffer overflow via the component /userRpm/WlanMacFilterRpm.8.1
- CVE-2023-33538TP-Link TL-WR940N V2/V4, TL-WR841N V8/V10, and TL-WR740N V1/V2 was discovered to contain a command injection vulnerability via the component /userRpm/WlanNetworkRpm .KEV8.8
- CVE-2023-33537TP-Link TL-WR940N V2/V4, TL-WR841N V8/V10, and TL-WR740N V1/V2 was discovered to contain a buffer overflow via the component /userRpm/FixMapCfgRpm.8.1
- CVE-2022-43635This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of TP-Link TL-WR940N 6_211111 3.20.1(US) routers. Authentication is not required to ...6.5
- CVE-2022-43636This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of TP-Link TL-WR940N 6_211111 3.20.1(US) routers. Authentication is not required to exploit t...8.8
Product normalization is registry-driven with AI assist and human review. How it works