CVE-2022-26988

TP-Link TL-WDR7660 2.0.30, Mercury D196G 20200109_2.0.4, and Fast FAC1900R 20190827_2.0.2 routers have a stack overflow issue in `MntAte` function. Local users could get remote code execution.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 66%
VendorProductVersion
tp-linktl-wdr7660_firmware
2.0.30
tp-linktl-wdr7661_firmware
-
tp-linktl-wdr7620_firmware
-
tp-linktl-wdr5660_firmware
-
mercusysmercury_d196g_firmware
20200109_2.0.4:_2.0
fastcomfac1900r_firmware
20190827_2.0.2:_2.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://tp-link.com
https://drive.google.com/file/d/1J1KzojrMCq-MrV0HqkWiu17MIXGhRuUH/view?usp=sharing
https://github.com/GANGE666
http://tp-link.com
https://drive.google.com/file/d/1J1KzojrMCq-MrV0HqkWiu17MIXGhRuUH/view?usp=sharing
https://github.com/GANGE666