CVE-2023-50224: TP-Link TL-WR841N Authentication Bypass by Spoofing
TP-Link TL-WR841N Authentication Bypass by Spoofing Vulnerability. TP-Link TL-WR841N contains an authentication bypass by spoofing vulnerability within the httpd service, which listens on TCP port 80 by default, leading to the disclose of stored credentials. The impacted products could be end-of-life (EoL) and/or end-of-service (EoS). Users should discontinue product utilization.
- CISA KEV-listed (remediation due 2025-09-24)
- EPSS 1.5% (81.5% percentile)