CNNVD-202602-808 Information
CNNVD ID
CNNVD-202602-808
Related CVE
- CNNVD Published: 2026-02-05
Description (Chinese)
TP-Link Archer MR200等都是中国普联(TP-Link)公司的一个WiFi路由器。 TP-Link多款产品存在安全漏洞,该漏洞源于响应未经检查直接由eval等JavaScript函数执行,攻击者可通过中间人攻击在路由器管理门户上执行JavaScript代码。以下产品及版本受到影响:Archer MR200 v5.2版本、C20 v6版本、TL-WR850N v3版本和TL-WR845N v4版本。
Description (English)
TP-Link Archer MR200, among others, is a WiFi router for PUR-Link. TP-Link has a safety gap with multiple products, which stems from the fact that the response was performed directly by the JavaScript function, e.g. e., e., e.g., uninspected, and that the aggressor could attack the JavaScript code on the router management portal through an intermediary. The following products and versions were affected: Archer MR200 v5.2, C20 v6, TL-WR85N v3 and TL-WR845N v4.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
普联
Published
2026-02-05
Last Modified
2026-02-24
References
https://www.tp-link.com/en/support/download/archer-c20/v6/#Firmware https://www.tp-link.com/en/support/download/archer-mr200/v5.20/#Firmware https://www.tp-link.com/en/support/download/tl-wr845n/#Firmware https://www.tp-link.com/in/support/download/archer-c20/v6/#Firmware https://www.tp-link.com/in/support/download/archer-mr200/v5.20/#Firmware https://www.tp-link.com/in/support/download/tl-wr845n/#Firmware https://www.tp-link.com/in/support/download/tl-wr850n/#Firmware https://www.tp-link.com/us/support/faq/4948/