CVE-2022-26987

EUVD-2022-31527
TP-Link TL-WDR7660 2.0.30, Mercury D196G 20200109_2.0.4, and Fast FAC1900R 20190827_2.0.2 routers have a stack overflow issue in `MmtAtePrase` function. Local users could get remote code execution.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 67%
Affected Products (NVD)
VendorProductVersion
tp-linktl-wdr7660_firmware
2.0.30
tp-linktl-wdr7661_firmware
-
tp-linktl-wdr7620_firmware
-
tp-linktl-wdr5660_firmware
-
mercusysmercury_d196g_firmware
20200109_2.0.4:_2.0
fastcomfac1900r_firmware
20190827_2.0.2:_2.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://tp-link.com
https://drive.google.com/file/d/1SnNoqRlJiBD673UROLwdgg_roMOneVR9/view?usp=sharing
https://github.com/GANGE666
http://tp-link.com
https://drive.google.com/file/d/1SnNoqRlJiBD673UROLwdgg_roMOneVR9/view?usp=sharing
https://github.com/GANGE666