Question 1

What is CVE-2023-33538 — TP-Link Multiple Routers Command Injection Vulnerability?

Accepted Answer

TP-Link TL-WR940N V2/V4, TL-WR841N V8/V10, and TL-WR740N V1/V2 contain a command injection vulnerability via the component /userRpm/WlanNetworkRpm. The impacted products could be end-of-life (EoL) and/or end-of-service (EoS). Users should discontinue product utilization.

Question 2

What is the authoritative source for CVE-2023-33538?

Accepted Answer

TP-Link Multiple Routers Command Injection Vulnerability (CVE-2023-33538) is catalogued in NVD + CISA KEV + FIRST EPSS and curated for EU compliance use cases by SQUR.

CVE-2023-33538TP-Link Multiple Routers Command Injection Vulnerability

Description

Scoring

CISA KEV entry

(incoming)1

Related by meaning· 6