CVE-2025-25427

HIGH EPSS 42.6%
Published Apr 18, 20251y ago · Modified Jun 17, 20261w ago
8.6 CVSS 4.0
High
Find Similar
Published Apr 18, 2025 1y ago
Last Modified Jun 17, 2026 1w ago

Description

A stored cross-site scripting (XSS) vulnerability in the upnp.htm page of the web Interface in TP-Link WR841N v14/v14.6/v14.8 <= Build 241230 Rel. 50788n allows remote attackers to inject arbitrary JavaScript code via the port mapping description. This leads to an execution of the JavaScript payload when the upnp page is loaded.

CVSS Details

Base Score
8.6
Exploitability
Impact
Vector string
CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:L/SI:N/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector Adjacent
Attack Complexity Low
Privileges Required None
User Interaction P
Scope X

Threat Intelligence

EPSS Exploit Probability
42.6% percentile
Exploit & Patch Status
Public Exploit Known
No Patch Available

Weaknesses 1

CWE-79 Cross-site Scripting Injection

Affected Products 4

VendorProductVersionRange
tp-linkwr841n_firmware* ≤241230
tp-linkwr841n14any
tp-linkwr841n14.6any
tp-linkwr841n14.8any

References 4

  • github.com https://github.com/slin99/2025-25427
    ExploitThird Party Advisory
  • github.com https://github.com/slin99/2025-25427/blob/master/readme.md
    ExploitThird Party Advisory
  • tp-link.com https://www.tp-link.com/us/support/download/tl-wr841n/#Firmware
    Product
  • tp-link.com https://www.tp-link.com/us/support/faq/4415/
    Vendor Advisory

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.