- How many CVEs does TP-Link have?
- TP-Link has 570 published CVE records since 2012, including 157 in the last two years.
- How many TP-Link CVEs are in CISA KEV?
- Yes — 6 of TP-Link's CVEs are listed in CISA's Known Exploited Vulnerabilities catalog, confirmed exploited in the wild and carrying a CISA remediation deadline.
- Which TP-Link products have the most CVEs?
- The TP-Link products with the most published CVEs are TL-WR841N, tl-wr886n_firmware, tl-wr841n_firmware, tl-wr886n, er5120g.
- What are the most common weakness types in TP-Link CVEs?
- TP-Link's CVEs most often map to these CWE weakness types: CWE-78 (Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')), CWE-121 (Stack-based Buffer Overflow), CWE-787 (Out-of-bounds Write), CWE-120 (Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')).
- Are there public exploits for TP-Link vulnerabilities?
- Yes — 124 of TP-Link's CVEs have a known public exploit.
- How many critical TP-Link vulnerabilities are there?
- TP-Link has 99 critical and 320 high-severity CVEs.
- What is the average severity of TP-Link CVEs?
- The average CVSS base score across TP-Link's scored CVEs is 7.7.