CVE-2024-46340
CRITICALDescription
TL-WR845N(UN)_V4_201214, TP-Link TL-WR845N(UN)_V4_200909, and TL-WR845N(UN)_V4_190219 was discovered to transmit user credentials in plaintext after executing a factory reset.
Is your site exposed to CVE-2024-46340?
Run a free security scan — no signup, results in seconds.
CVSS v3.1 Score
Weakness Type (CWE)
Affected Products
| Vendor | Product |
|---|---|
| tp-link | tl-wr845n_firmware |
| tp-link | tl-wr845n |
| tp-link | tl-wr845n_firmware |
| tp-link | tl-wr845n |
| tp-link | tl-wr845n_firmware |
| tp-link | tl-wr845n |
References
Frequently Asked Questions
What is CVE-2024-46340? +
How severe is CVE-2024-46340? +
What products are affected by CVE-2024-46340? +
How do I check if I'm vulnerable to CVE-2024-46340? +
Related Vulnerabilities
StrongDM Desktop Application before 23.74.0 (Desktop Client before 53.77.0) on Microsoft Windows stores authentication state, including a JSON Web Token …
The lack of encryption in the DuoxMe (formerly Blue) application binary in versions prior to 3.3.1 for iOS devices allows …
This vulnerability exists in CP Plus Wi-Fi Camera due to improper protection of sensitive information in runtime memory. An attacker …
next-forge is a Next.js project boilerplate for modern web application. The BASEHUB_TOKEN commited in apps/web/.env.example. Users should avoid use of …
PMD is an extensible multilanguage static code analyzer. The passphrase for the PMD and PMD Designer release signing keys are …
This vulnerability exists in the Tinxy smart devices due to storage of credentials in plaintext within the device firmware. An …