CVE-2020-35575

Name: CVE-2020-35575
Creator: NVD / NIST
Published: 2020-12-26T02:15:12.87+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

CRITICALCVSS 9.8/10EPSS 7.64%

Last modified Jun 17, 2026

CVE-2020-35575 is a critical-severity vulnerability rated 9.8/10 on the CVSS scale. A password-disclosure issue in the web interface on certain TP-Link devices allows a remote attacker to get full administrative access to the web panel. This affects WA901ND devices before 3.16.9(201211) beta, and Archer C5, Archer C7, MR3420, MR6400, WA701ND, WA801ND, WDR3500, WDR3600, WE843N, WR1043ND, WR1045ND, WR740N, WR741ND, WR749N, WR802N, WR840N, WR841HP, WR841N, WR842N, WR842ND, WR845N, WR940N, WR941HP, WR945N, WR949N, and WRD4300 devices.. EPSS estimates a 7.64% chance of exploitation in the next 30 days.

Description

A password-disclosure issue in the web interface on certain TP-Link devices allows a remote attacker to get full administrative access to the web panel. This affects WA901ND devices before 3.16.9(201211) beta, and Archer C5, Archer C7, MR3420, MR6400, WA701ND, WA801ND, WDR3500, WDR3600, WE843N, WR1043ND, WR1045ND, WR740N, WR741ND, WR749N, WR802N, WR840N, WR841HP, WR841N, WR842N, WR842ND, WR845N, WR940N, WR941HP, WR945N, WR949N, and WRD4300 devices.

Metrics

CVSS 3.1

9.8/10

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Probability

7.64%

93.8th percentile

Probability of exploitation in the next 30 days. Learn more

Affected Software

Vendor	Product	Versions
Tp-Link	Wa901nd Firmware	< 3.16.9\(201211\)_beta
Tp-Link	Archer C5 Firmware	All versions
Tp-Link	Archer C7 Firmware	All versions
Tp-Link	Mr3420 Firmware	All versions
Tp-Link	Mr6400 Firmware	All versions
Tp-Link	Wa701nd Firmware	All versions
Tp-Link	Wa801nd Firmware	All versions
Tp-Link	Wdr3500 Firmware	All versions
Tp-Link	Wdr3600 Firmware	All versions
Tp-Link	We843n Firmware	All versions
Tp-Link	Wr1043nd Firmware	All versions
Tp-Link	Wr1045nd Firmware	All versions
Tp-Link	Wr740n Firmware	All versions
Tp-Link	Wr741nd Firmware	All versions
Tp-Link	Wr749n Firmware	All versions
Tp-Link	Wr802n Firmware	All versions
Tp-Link	Wr840n Firmware	All versions
Tp-Link	Wr841hp Firmware	All versions
Tp-Link	Wr841n Firmware	All versions
Tp-Link	Wr842n Firmware	All versions
Tp-Link	Wr842nd Firmware	All versions
Tp-Link	Wr845n Firmware	All versions
Tp-Link	Wr940n Firmware	All versions
Tp-Link	Wr941hp Firmware	All versions
Tp-Link	Wr945n Firmware	All versions
Tp-Link	Wr949n Firmware	All versions
Tp-Link	Wrd4300 Firmware	All versions

References

http://packetstormsecurity.com/files/163274/TP-Link-TL-WR841N-Command-Injection.htmlExploit, Third Party Advisory, VDB Entry
https://pastebin.com/F8AuUdckThird Party Advisory
https://static.tp-link.com/2020/202012/20201214/wa901ndv5_eu_3_16_9_up_boot%28201211%29.zip
https://www.tp-link.com/us/securityVendor Advisory
http://packetstormsecurity.com/files/163274/TP-Link-TL-WR841N-Command-Injection.htmlExploit, Third Party Advisory, VDB Entry
https://pastebin.com/F8AuUdckThird Party Advisory
https://static.tp-link.com/2020/202012/20201214/wa901ndv5_eu_3_16_9_up_boot%28201211%29.zip
https://www.tp-link.com/us/securityVendor Advisory

Timeline

Published: Dec 26, 2020
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2020-35575?

How severe is CVE-2020-35575?

CVE-2020-35575 has a CVSS score of 9.8/10 (CRITICAL severity). The EPSS model estimates a 7.64% probability of exploitation in the next 30 days.

How do I fix CVE-2020-35575?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2020-35575?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST