CVE-2025-9014
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2026-01-15

Last updated on: 2026-01-15

Assigner: TPLink

Description
A Null Pointer Dereference vulnerability exists in the referer header check of the web portal of TP-Link TL-WR841N v14, caused by improper input validation.  A remote, unauthenticated attacker can exploit this flaw and cause Denial of Service on the web portal service.This issue affects TL-WR841N v14: before 250908.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-01-15
Last Modified
2026-01-15
Generated
2026-06-16
AI Q&A
2026-01-16
EPSS Evaluated
2026-06-14
NVD
CVE-2025-9014
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
tp-link tl-wr841n to 250908 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-20 The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability is a Null Pointer Dereference flaw in the referer header check of the web portal on the TP-Link TL-WR841N router version 14. It is caused by improper input validation, allowing a remote, unauthenticated attacker to exploit it and cause a Denial of Service (DoS) on the device's web portal service. [2]

Impact Analysis

If exploited, this vulnerability can cause a Denial of Service (DoS) on the TP-Link TL-WR841N router's web portal service, making the web interface unavailable. This can disrupt management and configuration of the device remotely, potentially impacting network availability and administration. [2]

Mitigation Strategies

To mitigate this vulnerability, you should update your TP-Link TL-WR841N v14 device to firmware version 250908 or later, which resolves the issue. The latest firmware can be downloaded from TP-Link's official support pages. [2, 1]

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-9014. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart