Remote Code Execution Vulnerabilities Found in TP-Link, NetComm Routers
Two security defects were identified in TP-Link WR710N-V1-151022 and Archer-C5-V2-160201 SOHO (small office/home office) #routers, allowing attackers to execute code, crash devices, or guess login credentials.
Tracked as CVE-2022-4498, the first issue is described as a heap overflow caused by crafted packets received during HTTP basic authentication mode. An attacker could exploit the bug to cause a denial-of-service (DoS) condition or for RCE.
More at https://www.securityweek.com/remote-code-execution-vulnerabilities-found-tp-link-netcomm-routers