← Back to CVEs
CVE-2024-37661
MEDIUM6.3
Description
TP-LINK TL-7DR5130 v1.0.23 is vulnerable to forged ICMP redirect message attacks. An attacker in the same WLAN as the victim can hijack the traffic between the victim and any remote server by sending out forged ICMP redirect messages.
CVE Details
CVSS v3.1 Score6.3
SeverityMEDIUM
CVSS VectorCVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:H
Attack VectorADJACENT_NETWORK
ComplexityLOW
Privileges RequiredLOW
User InteractionREQUIRED
Published6/17/2024
Last Modified6/6/2025
Sourcenvd
Honeypot Sightings0
Affected Products
tp-link:tl-7dr5130tp-link:tl-7dr5130_firmware
Weaknesses (CWE)
CWE-346
References
https://github.com/ouuan/router-vuln-report/blob/master/icmp-redirect/tl-7dr5130-redirect.md(cve@mitre.org)
https://github.com/ouuan/router-vuln-report/blob/master/icmp-redirect/tl-7dr5130-redirect.md(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.