CVE-2023-23040

TP-Link router TL-WR940N V6 3.19.1 Build 180119 uses a deprecated MD5 algorithm to hash the admin password used for basic authentication.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:tp-link:tl-wr940n_firmware:6_3.19.1:180119:*:*:*:*:*:*
cpe:2.3:h:tp-link:tl-wr940n:-:*:*:*:*:*:*:*

History

03 Mar 2023, 13:39

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.5
CWE CWE-327
References (MISC) https://midist0xf.medium.com/tl-wr940n-uses-weak-md5-hashing-algorithm-ae7b589860d2 - (MISC) https://midist0xf.medium.com/tl-wr940n-uses-weak-md5-hashing-algorithm-ae7b589860d2 - Patch, Third Party Advisory
References (MISC) https://www.tp-link.com/en/support/download/tl-wr940n/#Firmware - (MISC) https://www.tp-link.com/en/support/download/tl-wr940n/#Firmware - Product
CPE cpe:2.3:h:tp-link:tl-wr940n:-:*:*:*:*:*:*:*
cpe:2.3:o:tp-link:tl-wr940n_firmware:6_3.19.1:180119:*:*:*:*:*:*
First Time Tp-link
Tp-link tl-wr940n
Tp-link tl-wr940n Firmware

22 Feb 2023, 17:16

Type Values Removed Values Added
New CVE

Information

Published : 2023-02-22 17:15

Updated : 2023-12-10 14:48


NVD link : CVE-2023-23040

Mitre link : CVE-2023-23040

CVE.ORG link : CVE-2023-23040


JSON object : View

Products Affected

tp-link

  • tl-wr940n_firmware
  • tl-wr940n
CWE
CWE-327

Use of a Broken or Risky Cryptographic Algorithm