QwikSec

Security Database

CVE

CWE

Training

CVE-2021-41451

Published: Dec 17, 2021

Modified: Aug 4, 2024

PUBLISHED

Description

A misconfiguration in HTTP/1.0 and HTTP/1.1 of the web interface in TP-Link AX10v1 before V1_211117 allows a remote unauthenticated attacker to send a specially crafted HTTP request and receive a misconfigured HTTP/0.9 response, potentially leading into a cache poisoning attack.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://tp-link.com

x_refsource_MISC

http://ax10v1.com

x_refsource_MISC

https://www.tp-link.com/us/support/download/archer-ax10/v1/#Firmware

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.