Primary

Context

TP-Link TL-WR940N V6 UPnP Denial-of-Service Vulnerability

Vulnerability

A denial-of-service vulnerability has been identified in the TP-Link TL-WR940N V6 router, specifically in the UPnP modules. This vulnerability arises from improper input validation, allowing unauthenticated adjacent attackers to disrupt the UPnP service, making it unavailable on the device. The issue affects TL-WR940N V6 routers running Build 220801 or earlier.

Impact

Exploitation of this vulnerability can cause the UPnP service on the device to become unavailable, leading to potential disruptions in network functionality that relies on UPnP.

Remediation

Users are advised to download and update to the latest firmware version. The latest firmware for the TL-WR940N V6 can be downloaded from the TP-Link official website.

Added: Nov 20, 2025, 3:50 PM

Updated: Nov 20, 2025, 3:50 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.9

remediation

7.7

relevance

1.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.9

remediation

7.7

relevance

1.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

TP-Link TL-WR940N V6 UPnP Denial-of-Service Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating