CVE-2022-4498 Information

Description

In TP-Link routers Archer C5 and WR710N-V1 running the latest available code when receiving HTTP Basic Authentication the httpd service can be sent a crafted packet that causes a heap overflow. This can result in either a DoS (by crashing the httpd process) or an arbitrary code execution.

Reference

https://kb.cert.org/vuls/id/572615