Rewterz Threat Advisory – Multiple IBM Vulnerabilities
February 21, 2022Rewterz Threat Alert – Donot APT Group Targeting Pakistani Government – Active IOCs
February 21, 2022Rewterz Threat Advisory – Multiple IBM Vulnerabilities
February 21, 2022Rewterz Threat Alert – Donot APT Group Targeting Pakistani Government – Active IOCs
February 21, 2022Severity
High
Analysis Summary
CVE-2022-22922
TP-Link TL-WA850RE Wi-Fi Range Extender could allow a remote attacker to gain elevated privileges on the system, caused by the use of highly predictable and easily detectable session keys. By sending a specially-crafted request, an attacker could exploit this vulnerability to gain administrative privileges.
Impact
- Privilege Escalation
Indicators of Compromise
CVE
- CVE-2022-22922
Affected Vendors
TP-Link
Affected Products
- TP-Link TL-WA850RE Wi-Fi Range Extender
Remediation
Upgrade to the latest version of TL-WA850RE Wi-Fi Range Extender, available from the TP-Link Web site.