CyberSec.Space Logo
Back to CVE Browser

CVE-2020-24363

Known Exploited (CISA KEV)HIGH
8.8
CVSS Severity Score
EPSS Score92.6820%
EPSS Percentile97.83th
PublishedAug 31, 2020
Last ModifiedNov 7, 2025

Vulnerability Description

TP-Link TL-WA855RE V5 20200415-rel37464 devices allow an unauthenticated attacker (on the same network) to submit a TDDP_RESET POST request for a factory reset and reboot. The attacker can then obtain incorrect access control by setting a new administrative password.

Affected Platforms (CPE)

πŸ’»
Tp Link

Tl Wa855re Firmware

< 200731

References & Advisories

πŸ”— http://malwrforensics.com/en/2020/08/31/cve-2020-24363-tl-wa855re-v5-advisory/
πŸ”— https://pastebin.com/VjHM4UiA
πŸ”— https://www.tp-link.com/us/support/download/tl-wa855re/#Firmware
πŸ”— http://malwrforensics.com/en/2020/08/31/cve-2020-24363-tl-wa855re-v5-advisory/
πŸ”— https://pastebin.com/VjHM4UiA
πŸ”— https://www.tp-link.com/us/support/download/tl-wa855re/#Firmware
πŸ”— https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-24363

Related Vulnerabilities

CVE-2020-109168.0

This vulnerability allows network-adjacent attackers to escalate privileges on affected installations of TP-Link TL-WA855RE Firmwa...

CVE-2026-121917.8

A vulnerability was found in Comma AI Openpilot 0.11. This issue affects the function pickle.load/pickle.loads of the file selfdri...

CVE-2026-121905.3

A vulnerability has been found in Genspark AI Workspace App 2.8.4 on Android. This vulnerability affects unknown code of the compo...

CVE-2026-121895.3

A flaw has been found in Moovit Bus & Public Transit App 1.18 on Android. This affects an unknown part of the component com.tranzm...