CVE-2025-11676

UPnP DOS in TL-WR940N V6

Description

Improper input validation vulnerability in TP-Link System Inc. TL-WR940N V6 (UPnP modules), which allows unauthenticated adjacent attackers to perform DoS attack. This issue affects TL-WR940N V6 <= Build 220801.

INFO

Published Date :

2025-11-20T08:09:46.853Z

Last Modified :

2025-11-20T15:28:29.556Z

Source :

TPLink

AFFECTED PRODUCTS

The following products are affected by CVE-2025-11676 vulnerability.

Vendors	Products
Tp-link	Tl-wr940n Tl-wr940n V6 Wr940n

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-11676.

URL	Resource
https://www.tp-link.com/en/support/download/tl-wr940n/v6/#Firmware
https://www.tp-link.com/en/support/faq/4755/
https://www.tp-link.com/us/support/download/tl-wr940n/v6/#Firmware

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Attack Requirements

Privileges Required

User Interaction

VS Confidentiality

VS Integrity

VS Availability

SS Confidentiality

SS Integrity

SS Availability