CVE-2019-19143
23Vexday Risk Score
No sign of exploitation. It has a public proof of concept.
ssvc Attendepss 3.8%
from disclosure to weapon35 days
Published on NVDJan 27
1st PoC+35d
exploitation probability
3.8%top 11% of all CVEs
observed exploitation
nono source reports it
2 public exploit(s)
TP-LINK TL-WR849N 0.9.1 4.16 devices do not require authentication to replace the firmware via a POST request to the cgi/softup URI.
Affected products
n/a · n/apublic PoCs found — 2
cve_referencepacketstormsecurity.com/files/156586/TP-Link-TL-WR849N-0.9.1-4.16-Authentication-Bypass.htmlunverifiedexploitdbwww.exploit-db.com/exploits/48152unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.