CVE-2023-49074
Published: 09 April 2024
Summary
CVE-2023-49074 is a high-severity Exposed Dangerous Method or Function (CWE-749) vulnerability in Tp-Link Eap225 Firmware. Its CVSS base score is 7.4 (High).
Operationally, ranked in the top 9.3% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
Deeper analysis
A denial of service vulnerability exists in the TDDP functionality of the Tp-Link AC1350 Wireless MU-MIMO Gigabit Access Point model EAP225 V3 running firmware version 5.1.0 Build 20220926. A specially crafted series of network requests can trigger a factory reset of the device. The issue is tracked as CVE-2023-49074 with a CVSS 3.1 score of 7.4 and is associated with CWE-749.
An unauthenticated attacker on the network can send a sequence of packets to exploit the flaw, resulting in high impact to integrity and availability through the forced reset to factory defaults. The attack requires no user interaction and can be performed remotely, though the CVSS vector notes high attack complexity.
The EPSS score for this CVE has remained flat at a low value of 0.0580 with no material increase after disclosure. No information on patches, workarounds, or real-world exploitation activity is provided in the available references.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2023-53094
Vulnerability details
A denial of service vulnerability exists in the TDDP functionality of Tp-Link AC1350 Wireless MU-MIMO Gigabit Access Point (EAP225 V3) v5.1.0 Build 20220926. A specially crafted series of network requests can lead to reset to factory settings. An attacker can…
more
send a sequence of unauthenticated packets to trigger this vulnerability.
- CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
Mitigating Controls
Likely Mitigating Controls AI
Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.