CVE-2024-37661

medium

Description

TP-LINK TL-7DR5130 v1.0.23 is vulnerable to forged ICMP redirect message attacks. An attacker in the same WLAN as the victim can hijack the traffic between the victim and any remote server by sending out forged ICMP redirect messages.

References

https://github.com/ouuan/router-vuln-report/blob/master/icmp-redirect/tl-7dr5130-redirect.md

Details

Source: Mitre, NVD

Published: 2024-06-17

Updated: 2024-07-03

Risk Information

CVSS v2

Base Score: 5.8

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:N

Severity: Medium

CVSS v3

Base Score: 6.3

Vector: CVSS:3.0/AV:A/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:H