CVE-2023-50224CISA KEVEPSS p96.7%

CVE-2023-50224TP-Link TL-WR841N Authentication Bypass by Spoofing Vulnerability

TP-Link / TL-WR841N

Description

TP-Link TL-WR841N contains an authentication bypass by spoofing vulnerability within the httpd service, which listens on TCP port 80 by default, leading to the disclose of stored credentials. The impacted products could be end-of-life (EoL) and/or end-of-service (EoS). Users should discontinue product utilization.

Scoring

EPSS17.45% probability of exploitation · percentile 96.7% · 2026-06-19T12:03:05Z

CISA KEV entry

Added to KEV: 2025-09-03

(incoming)1

TypeTargetConfidenceTier
KEVEntryTP-Link TL-WR841N Authentication Bypass by Spoofing Vulnerabilitykev-cve-2023-502240%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
TP-link TL-WA855RE Missing Authentication for Critical Function Vulnerability
CVE
TP-Link Multiple Routers Command Injection Vulnerability
CVE
CVE-2026-5039
CVE
CVE-2025-14737
CVE
TP-Link Archer C7(EU) and TL-WR841N/ND(MS) OS Command Injection Vulnerability
CVE
CVE-2026-0834
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.