CVE-2025-14737

Sažetak

Command Injection vulnerability in TP-Link WA850RE (httpd modules) allows authenticated adjacent attacker to inject arbitrary commands.This issue affects: ≤ WA850RE V2_160527, ≤ WA850RE V3_160922.

Reference

https://blog.exodusintel.com/2022/06/23/tp-link-wa850re-remote-command-injection-vulnerability/
https://www.tp-link.com/us/support/download/tl-wa850re/v2/#Firmware
https://www.tp-link.com/us/support/download/tl-wa850re/v3/#Firmware
https://www.tp-link.com/us/support/faq/4848/

CVSS

Base:	0.0
Impact:	None
Exploitability:	None

Pristup

Vektor	Složenost	Autentikacija
None	None	None

Impact

Povjerljivost	Cjelovitost	Dostupnost
None	None	None

CVSS vektor

None

Zadnje važnije ažuriranje

19-12-2025 - 18:00

Objavljeno

18-12-2025 - 18:15