CVE-2021-3275 — MEDIUM (6.1)

Vulnerability Description

Unauthenticated stored cross-site scripting (XSS) exists in multiple TP-Link products including WIFI Routers (Wireless AC routers), Access Points, ADSL + DSL Gateways and Routers, which affects TD-W9977v1, TL-WA801NDv5, TL-WA801Nv6, TL-WA802Nv5, and Archer C3150v2 devices through the improper validation of the hostname. Some of the pages including dhcp.htm, networkMap.htm, dhcpClient.htm, qsEdit.htm, and qsReview.htm and use this vulnerable hostname function (setDefaultHostname()) without sanitization.

CVSS Score

6.1

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality

LOW

Integrity

LOW

Availability

NONE

Affected Products

Vendor	Product	Versions
Tp-Link	Td-W9977 Firmware	v1_0.1.0_0.9.1_up_boot\(161123\)_2016-11-23_15.36.15
Tp-Link	Td-W9977	-
Tp-Link	Tl-Wa801Nd Firmware	v5_us_0.9.1_3.16_up_boot\[170905-rel56404\]
Tp-Link	Tl-Wa801Nd	-
Tp-Link	Tl-Wa801N Firmware	v6_eu_0.9.1_3.16_up_boot\[200116-rel61815\]
Tp-Link	Tl-Wa801N	-
Tp-Link	Tl-Wr802N Firmware	v4_us_0.9.1_3.17_up_boot\[200421-rel38950\]
Tp-Link	Tl-Wr802N	-
Tp-Link	Archer-C3150 Firmware	v2_170926
Tp-Link	Archer-C3150	-

Related Weaknesses (CWE)

CWE-79

References

http://packetstormsecurity.com/files/161989/TP-Link-Cross-Site-Scripting.htmlExploitThird Party AdvisoryVDB Entry
https://github.com/smriti548/CVE/blob/main/CVE-2021-3275ExploitThird Party Advisory
https://seclists.org/fulldisclosure/2021/Mar/67ExploitMailing ListThird Party Advisory
https://www.tp-link.comVendor Advisory
http://packetstormsecurity.com/files/161989/TP-Link-Cross-Site-Scripting.htmlExploitThird Party AdvisoryVDB Entry
https://github.com/smriti548/CVE/blob/main/CVE-2021-3275ExploitThird Party Advisory
https://seclists.org/fulldisclosure/2021/Mar/67ExploitMailing ListThird Party Advisory
https://www.tp-link.comVendor Advisory

FAQ

What is CVE-2021-3275?

CVE-2021-3275 is a vulnerability with a CVSS score of 6.1 (MEDIUM). Unauthenticated stored cross-site scripting (XSS) exists in multiple TP-Link products including WIFI Routers (Wireless AC routers), Access Points, ADSL + DSL Gateways and Routers, which affects TD-W99...

How severe is CVE-2021-3275?

CVE-2021-3275 has been rated MEDIUM with a CVSS base score of 6.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2021-3275?

Check the references section above for vendor advisories and patch information. Affected products include: Tp-Link Td-W9977 Firmware, Tp-Link Td-W9977, Tp-Link Tl-Wa801Nd Firmware, Tp-Link Tl-Wa801Nd, Tp-Link Tl-Wa801N Firmware.