Cyber Resilience

CVE-2023-49074

HighPublic PoC

Published: 09 April 2024

Published
09 April 2024
Modified
04 November 2025
KEV Added
Patch
CVSS Score v3.1 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H
EPSS Score 0.0580 90.7th percentile
Risk Priority 18 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2023-49074 is a high-severity Exposed Dangerous Method or Function (CWE-749) vulnerability in Tp-Link Eap225 Firmware. Its CVSS base score is 7.4 (High).

Operationally, ranked in the top 9.3% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

Deeper analysis

A denial of service vulnerability exists in the TDDP functionality of the Tp-Link AC1350 Wireless MU-MIMO Gigabit Access Point model EAP225 V3 running firmware version 5.1.0 Build 20220926. A specially crafted series of network requests can trigger a factory reset of the device. The issue is tracked as CVE-2023-49074 with a CVSS 3.1 score of 7.4 and is associated with CWE-749.

An unauthenticated attacker on the network can send a sequence of packets to exploit the flaw, resulting in high impact to integrity and availability through the forced reset to factory defaults. The attack requires no user interaction and can be performed remotely, though the CVSS vector notes high attack complexity.

The EPSS score for this CVE has remained flat at a low value of 0.0580 with no material increase after disclosure. No information on patches, workarounds, or real-world exploitation activity is provided in the available references.

EU & UK References

Vulnerability details

A denial of service vulnerability exists in the TDDP functionality of Tp-Link AC1350 Wireless MU-MIMO Gigabit Access Point (EAP225 V3) v5.1.0 Build 20220926. A specially crafted series of network requests can lead to reset to factory settings. An attacker can…

more

send a sequence of unauthenticated packets to trigger this vulnerability.

CWE(s)

Related Threats

No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.

Affected Assets

tp-link
eap225 firmware
5.1.0

Mitigating Controls

Likely Mitigating Controls AI

Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.

addresses: CWE-749

Explicitly prohibiting dangerous or unnecessary functions and services prevents exposure of methods that could be directly exploited.

addresses: CWE-749

Minimal functionality removes or avoids exposure of dangerous methods and functions.

References