CVE-2022-22922

Severity CVSS v4.0:
Pending analysis
Type:
CWE-330 Use of Insufficiently Random Value
Publication date:
18/02/2022
Last modified:
08/08/2023

Description

TP-Link TL-WA850RE Wi-Fi Range Extender before v6_200923 was discovered to use highly predictable and easily detectable session keys, allowing attackers to gain administrative privileges.

Vulnerable products and versions

CPE From Up to
cpe:2.3:o:tp-link:tl-wa850re_firmware:*:*:*:*:*:*:*:* v6_200923 (excluding)
cpe:2.3:h:tp-link:tl-wa850re:6:*:*:*:*:*:*:*