QwikSec

Security Database

CVE

CWE

Training

CVE-2026-3622

Published: Mar 26, 2026

Modified: Mar 27, 2026

PUBLISHED

Description

The vulnerability exists in the UPnP component of TL-WR841N v14, where improper input validation leads to an out-of-bounds read, potentially causing a crash of the UPnP service. Successful exploitation can cause the UPnP service to crash, resulting in a Denial-of-Service condition. This vulnerability affects TL-WR841N v14 < EN_0.9.1 4.19 Build 260303 Rel.42399n (V14_260303) and < US_0.9.1.4.19 Build 260312 Rel. 49108n (V14_0304).

Vendor	Product	Versions
TP-Link Systems Inc.	TL-WR841N v14	affected `0 - < 0.9.1 4.19`

Weaknesses (CWE)

References

https://www.tp-link.com/en/support/download/tl-wr841n/v14/#Firmware

patch

https://www.tp-link.com/us/support/download/tl-wr841n/v14/#Firmware

patch

https://www.tp-link.com/us/support/faq/5033/

vendor-advisory

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

CVE-2026-3622 - Security Vulnerability | QwikSec