{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-15517", "assignerOrgId": "f23511db-6c3e-4e32-a477-6aa17d310630", "state": "PUBLISHED", "assignerShortName": "TPLink", "dateReserved": "2026-01-13T19:43:48.978Z", "datePublished": "2026-03-23T18:01:31.162Z", "dateUpdated": "2026-03-24T03:56:05.005Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "f23511db-6c3e-4e32-a477-6aa17d310630", "shortName": "TPLink", "dateUpdated": "2026-03-23T18:01:31.162Z"}, "title": "Authorization Bypass in HTTP Server Endpoints on TP-Link Archer NX200, NX210, NX500 and NX600", "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-306", "description": "CWE-306 Missing Authentication for Critical Function", "type": "CWE"}]}], "impacts": [{"capecId": "CAPEC-115", "descriptions": [{"lang": "en", "value": "CAPEC-115 Authentication Bypass"}]}], "affected": [{"vendor": "TP-Link Systems Inc.", "product": "Archer NX600 v3.0", "platforms": ["Linux"], "versions": [{"status": "affected", "version": "0", "lessThan": "1.3.0 Build 260309", "versionType": "custom"}], "defaultStatus": "unaffected"}, {"vendor": "TP-Link Systems Inc.", "product": "Archer NX600 v2.0", "platforms": ["Linux"], "versions": [{"status": "affected", "version": "0", "lessThan": "1.3.0 Build 260311", "versionType": "custom"}], "defaultStatus": "unaffected"}, {"vendor": "TP-Link Systems Inc.", "product": "Archer NX600 v1.0", "platforms": ["Linux"], "versions": [{"status": "affected", "version": "0", "lessThan": "1.4.0 Build 260311", "versionType": "custom"}], "defaultStatus": "unaffected"}, {"vendor": "TP-Link Systems Inc.", "product": "Archer NX500 v2.0", "platforms": ["Linux"], "versions": [{"status": "affected", "version": "0", "lessThan": "< 1.5.0 Build 260309", "versionType": "custom"}], "defaultStatus": "unaffected"}, {"vendor": "TP-Link Systems Inc.", "product": "Archer NX500 v1.0", "platforms": ["Linux"], "versions": [{"status": "affected", "version": "0", "lessThan": "1.3.0 Build 260311", "versionType": "custom"}], "defaultStatus": "unaffected"}, {"vendor": "TP-Link Systems Inc.", "product": "Archer NX210 v3.0", "platforms": ["Linux"], "versions": [{"status": "affected", "version": "0", "lessThan": "1.3.0 Build 260309", "versionType": "custom"}], "defaultStatus": "unaffected"}, {"vendor": "TP-Link Systems Inc.", "product": "Archer NX210 v2.0 v2.20", "platforms": ["Linux"], "versions": [{"status": "affected", "version": "0", "lessThan": "1.3.0 Build 260311", "versionType": "custom"}], "defaultStatus": "unaffected"}, {"vendor": "TP-Link Systems Inc.", "product": "Archer NX200 v3.0", "platforms": ["Linux"], "versions": [{"status": "affected", "version": "0", "lessThan": "< 1.3.0 Build 260309", "versionType": "custom"}], "defaultStatus": "unaffected"}, {"vendor": "TP-Link Systems Inc.", "product": "Archer NX200 v2.20", "platforms": ["Linux"], "versions": [{"status": "affected", "version": "0", "lessThan": "1.3.0 Build 260311", "versionType": "custom"}], "defaultStatus": "unaffected"}, {"vendor": "TP-Link Systems Inc.", "product": "Archer NX200 v2.0", "platforms": ["Linux"], "versions": [{"status": "affected", "version": "0", "lessThan": "1.3.0 Build 260311", "versionType": "custom"}], "defaultStatus": "unaffected"}, {"vendor": "TP-Link Systems Inc.", "product": "Archer NX200 v1.0", "platforms": ["Linux"], "versions": [{"status": "affected", "version": "0", "lessThan": "1.8.0 Build 260311", "versionType": "custom"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "A missing authentication check in the HTTP server on TP-Link Archer NX200, NX210, NX500 and NX600 to certain cgi endpoints allows unauthenticated access intended for authenticated users. An attacker may perform privileged HTTP actions without authentication, including firmware upload and configuration operations.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "A missing authentication check in the HTTP server on TP-Link Archer NX200, NX210, NX500 and NX600 to certain cgi endpoints allows unauthenticated access intended for authenticated users. An attacker may perform privileged HTTP actions without authentication, including firmware upload and configuration operations."}]}], "references": [{"url": "https://www.tp-link.com/en/support/download/archer-nx200/#Firmware", "tags": ["patch"]}, {"url": "https://www.tp-link.com/en/support/download/archer-nx210/#Firmware", "tags": ["patch"]}, {"url": "https://www.tp-link.com/en/support/download/archer-nx500/#Firmware", "tags": ["patch"]}, {"url": "https://www.tp-link.com/en/support/download/archer-nx600/#Firmware", "tags": ["patch"]}, {"url": "https://www.tp-link.com/us/support/faq/5027/", "tags": ["vendor-advisory"]}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV4_0": {"attackVector": "ADJACENT", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "NONE", "userInteraction": "NONE", "vulnConfidentialityImpact": "HIGH", "subConfidentialityImpact": "NONE", "vulnIntegrityImpact": "HIGH", "subIntegrityImpact": "NONE", "vulnAvailabilityImpact": "NONE", "subAvailabilityImpact": "NONE", "exploitMaturity": "NOT_DEFINED", "Safety": "NOT_DEFINED", "Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "valueDensity": "NOT_DEFINED", "vulnerabilityResponseEffort": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED", "version": "4.0", "baseSeverity": "HIGH", "baseScore": 8.6, "vectorString": "CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N"}}], "credits": [{"lang": "en", "value": "Saifeldeen Aziz from Cyshield", "type": "finder"}], "source": {"discovery": "UNKNOWN"}, "x_generator": {"engine": "Vulnogram 0.5.0"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-03-23T00:00:00+00:00", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3", "id": "CVE-2025-15517"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-24T03:56:05.005Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-15517", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-03-23T19:06:00.942863Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-23T19:07:19.207Z"}}], "cna": {"title": "Authorization Bypass in HTTP Server Endpoints on TP-Link Archer NX200, NX210, NX500 and NX600", "source": {"discovery": "UNKNOWN"}, "credits": [{"lang": "en", "type": "finder", "value": "Saifeldeen Aziz from Cyshield"}], "impacts": [{"capecId": "CAPEC-115", "descriptions": [{"lang": "en", "value": "CAPEC-115 Authentication Bypass"}]}], "metrics": [{"format": "CVSS", "cvssV4_0": {"Safety": "NOT_DEFINED", "version": "4.0", "Recovery": "NOT_DEFINED", "baseScore": 8.6, "Automatable": "NOT_DEFINED", "attackVector": "ADJACENT", "baseSeverity": "HIGH", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N", "exploitMaturity": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED", "userInteraction": "NONE", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "NONE", "subIntegrityImpact": "NONE", "vulnIntegrityImpact": "HIGH", "subAvailabilityImpact": "NONE", "vulnAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "vulnConfidentialityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "TP-Link Systems Inc.", "product": "Archer NX600 v3.0", "versions": [{"status": "affected", "version": "0", "lessThan": "1.3.0 Build 260309", "versionType": "custom"}], "platforms": ["Linux"], "defaultStatus": "unaffected"}, {"vendor": "TP-Link Systems Inc.", "product": "Archer NX600 v2.0", "versions": [{"status": "affected", "version": "0", "lessThan": "1.3.0 Build 260311", "versionType": "custom"}], "platforms": ["Linux"], "defaultStatus": "unaffected"}, {"vendor": "TP-Link Systems Inc.", "product": "Archer NX600 v1.0", "versions": [{"status": "affected", "version": "0", "lessThan": "1.4.0 Build 260311", "versionType": "custom"}], "platforms": ["Linux"], "defaultStatus": "unaffected"}, {"vendor": "TP-Link Systems Inc.", "product": "Archer NX500 v2.0", "versions": [{"status": "affected", "version": "0", "lessThan": "< 1.5.0 Build 260309", "versionType": "custom"}], "platforms": ["Linux"], "defaultStatus": "unaffected"}, {"vendor": "TP-Link Systems Inc.", "product": "Archer NX500 v1.0", "versions": [{"status": "affected", "version": "0", "lessThan": "1.3.0 Build 260311", "versionType": "custom"}], "platforms": ["Linux"], "defaultStatus": "unaffected"}, {"vendor": "TP-Link Systems Inc.", "product": "Archer NX210 v3.0", "versions": [{"status": "affected", "version": "0", "lessThan": "1.3.0 Build 260309", "versionType": "custom"}], "platforms": ["Linux"], "defaultStatus": "unaffected"}, {"vendor": "TP-Link Systems Inc.", "product": "Archer NX210 v2.0 v2.20", "versions": [{"status": "affected", "version": "0", "lessThan": "1.3.0 Build 260311", "versionType": "custom"}], "platforms": ["Linux"], "defaultStatus": "unaffected"}, {"vendor": "TP-Link Systems Inc.", "product": "Archer NX200 v3.0", "versions": [{"status": "affected", "version": "0", "lessThan": "< 1.3.0 Build 260309", "versionType": "custom"}], "platforms": ["Linux"], "defaultStatus": "unaffected"}, {"vendor": "TP-Link Systems Inc.", "product": "Archer NX200 v2.20", "versions": [{"status": "affected", "version": "0", "lessThan": "1.3.0 Build 260311", "versionType": "custom"}], "platforms": ["Linux"], "defaultStatus": "unaffected"}, {"vendor": "TP-Link Systems Inc.", "product": "Archer NX200 v2.0", "versions": [{"status": "affected", "version": "0", "lessThan": "1.3.0 Build 260311", "versionType": "custom"}], "platforms": ["Linux"], "defaultStatus": "unaffected"}, {"vendor": "TP-Link Systems Inc.", "product": "Archer NX200 v1.0", "versions": [{"status": "affected", "version": "0", "lessThan": "1.8.0 Build 260311", "versionType": "custom"}], "platforms": ["Linux"], "defaultStatus": "unaffected"}], "references": [{"url": "https://www.tp-link.com/en/support/download/archer-nx200/#Firmware", "tags": ["patch"]}, {"url": "https://www.tp-link.com/en/support/download/archer-nx210/#Firmware", "tags": ["patch"]}, {"url": "https://www.tp-link.com/en/support/download/archer-nx500/#Firmware", "tags": ["patch"]}, {"url": "https://www.tp-link.com/en/support/download/archer-nx600/#Firmware", "tags": ["patch"]}, {"url": "https://www.tp-link.com/us/support/faq/5027/", "tags": ["vendor-advisory"]}], "x_generator": {"engine": "Vulnogram 0.5.0"}, "descriptions": [{"lang": "en", "value": "A missing authentication check in the HTTP server on TP-Link Archer NX200, NX210, NX500 and NX600 to certain cgi endpoints allows unauthenticated access intended for authenticated users. An attacker may perform privileged HTTP actions without authentication, including firmware upload and configuration operations.", "supportingMedia": [{"type": "text/html", "value": "A missing authentication check in the HTTP server on TP-Link Archer NX200, NX210, NX500 and NX600 to certain cgi endpoints allows unauthenticated access intended for authenticated users. An attacker may perform privileged HTTP actions without authentication, including firmware upload and configuration operations.", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-306", "description": "CWE-306 Missing Authentication for Critical Function"}]}], "providerMetadata": {"orgId": "f23511db-6c3e-4e32-a477-6aa17d310630", "shortName": "TPLink", "dateUpdated": "2026-03-23T18:01:31.162Z"}}}, "cveMetadata": {"cveId": "CVE-2025-15517", "state": "PUBLISHED", "dateUpdated": "2026-03-24T03:56:05.005Z", "dateReserved": "2026-01-13T19:43:48.978Z", "assignerOrgId": "f23511db-6c3e-4e32-a477-6aa17d310630", "datePublished": "2026-03-23T18:01:31.162Z", "assignerShortName": "TPLink"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:tp-link:archer_nx600_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "77429691-1193-4480-A64E-E1FB19D6A073", "versionEndExcluding": "1.3.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:tp-link:archer_nx600:3.0:*:*:*:*:*:*:*", "matchCriteriaId": "58132EDD-47B7-4E46-B280-FE58A920AE43", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:tp-link:archer_nx500_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "70EF52E9-1D92-4778-99C5-3B76B81681FA", "versionEndExcluding": "1.5.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:tp-link:archer_nx500:2.0:*:*:*:*:*:*:*", "matchCriteriaId": "40D78DBB-CAEA-4C2E-B703-2898B73A0A5E", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:tp-link:archer_nx210_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "22EA51B1-332E-48BB-BDBA-09A99ECB942F", "versionEndExcluding": "1.3.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:tp-link:archer_nx210:3.0:*:*:*:*:*:*:*", "matchCriteriaId": "DA336E76-7910-4780-BCA0-1DA2AA7F9418", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:tp-link:archer_nx200_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "48125D02-70B1-4448-BB33-4759FF0E3936", "versionEndExcluding": "1.3.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:tp-link:archer_nx200:3.0:*:*:*:*:*:*:*", "matchCriteriaId": "BD6E8279-6E92-47B5-9EEB-CD83355EF693", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:tp-link:archer_nx600_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "77429691-1193-4480-A64E-E1FB19D6A073", "versionEndExcluding": "1.3.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:tp-link:archer_nx600:2.0:*:*:*:*:*:*:*", "matchCriteriaId": "D75A95F3-D299-4037-A755-A6818169762F", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:tp-link:archer_nx600_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "34DC2394-8F53-4C1C-A2AC-E23CE5CB6D2F", "versionEndExcluding": "1.4.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:tp-link:archer_nx600:1.0:*:*:*:*:*:*:*", "matchCriteriaId": "0D20EAF3-A85A-42B1-AF19-D72292523593", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:tp-link:archer_nx500_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "1EC93BA6-FB10-4993-838A-C82FA984B6BB", "versionEndExcluding": "1.3.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:tp-link:archer_nx500:1.0:*:*:*:*:*:*:*", "matchCriteriaId": "581891F1-F50F-49B0-AB3D-B56ECF43F78B", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:tp-link:archer_nx210_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "22EA51B1-332E-48BB-BDBA-09A99ECB942F", "versionEndExcluding": "1.3.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:tp-link:archer_nx210:2.0:*:*:*:*:*:*:*", "matchCriteriaId": "0C230FE9-FBA9-4DAB-B7C1-2A270F57915C", "vulnerable": false}, {"criteria": "cpe:2.3:h:tp-link:archer_nx210:2.20:*:*:*:*:*:*:*", "matchCriteriaId": "FA0FC692-C2F1-4C0C-9502-84852BDCD7E3", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:tp-link:archer_nx200_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "48125D02-70B1-4448-BB33-4759FF0E3936", "versionEndExcluding": "1.3.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:tp-link:archer_nx200:2.0:*:*:*:*:*:*:*", "matchCriteriaId": "A953B18E-F832-4EE9-8821-4F60DC031715", "vulnerable": false}, {"criteria": "cpe:2.3:h:tp-link:archer_nx200:2.20:*:*:*:*:*:*:*", "matchCriteriaId": "10E43B48-2BA2-45ED-9C43-AAD2B021B3D4", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:tp-link:archer_nx200_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "98759C1B-F1B7-4EAC-BC4B-998ACB4B0C0B", "versionEndExcluding": "1.8.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:tp-link:archer_nx200:1.0:*:*:*:*:*:*:*", "matchCriteriaId": "4D2C0169-5369-42A5-B4E3-E7DBED807789", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "A missing authentication check in the HTTP server on TP-Link Archer NX200, NX210, NX500 and NX600 to certain cgi endpoints allows unauthenticated access intended for authenticated users. An attacker may perform privileged HTTP actions without authentication, including firmware upload and configuration operations."}, {"lang": "es", "value": "Una comprobaci\u00f3n de autenticaci\u00f3n faltante en el servidor HTTP en TP-Link Archer NX200, NX210, NX500 y NX600 a ciertos puntos finales cgi permite acceso no autenticado destinado a usuarios autenticados. Un atacante puede realizar acciones HTTP privilegiadas sin autenticaci\u00f3n, incluyendo la carga de firmware y operaciones de configuraci\u00f3n."}], "id": "CVE-2025-15517", "lastModified": "2026-03-31T19:08:33.513", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "NONE", "baseScore": 8.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.2, "source": "nvd@nist.gov", "type": "Primary"}], "cvssMetricV40": [{"cvssData": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "ADJACENT", "availabilityRequirement": "NOT_DEFINED", "baseScore": 8.6, "baseSeverity": "HIGH", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "NONE", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnAvailabilityImpact": "NONE", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "source": "f23511db-6c3e-4e32-a477-6aa17d310630", "type": "Secondary"}]}, "published": "2026-03-23T18:16:22.347", "references": [{"source": "f23511db-6c3e-4e32-a477-6aa17d310630", "tags": ["Product"], "url": "https://www.tp-link.com/en/support/download/archer-nx200/#Firmware"}, {"source": "f23511db-6c3e-4e32-a477-6aa17d310630", "tags": ["Product"], "url": "https://www.tp-link.com/en/support/download/archer-nx210/#Firmware"}, {"source": "f23511db-6c3e-4e32-a477-6aa17d310630", "tags": ["Product"], "url": "https://www.tp-link.com/en/support/download/archer-nx500/#Firmware"}, {"source": "f23511db-6c3e-4e32-a477-6aa17d310630", "tags": ["Product"], "url": "https://www.tp-link.com/en/support/download/archer-nx600/#Firmware"}, {"source": "f23511db-6c3e-4e32-a477-6aa17d310630", "tags": ["Vendor Advisory"], "url": "https://www.tp-link.com/us/support/faq/5027/"}], "sourceIdentifier": "f23511db-6c3e-4e32-a477-6aa17d310630", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-306"}], "source": "f23511db-6c3e-4e32-a477-6aa17d310630", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": ["linux"], "status": "affected", "versions": {"scheme": "generic", "value": "[0,1.8.0 Build 260311)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "Archer NX200 v1.0", "source": "cna", "vendor": "TP-Link Systems Inc."}, "product": "archer_nx200_v1.0", "vendor": "tp-link"}, {"configurations": [{"platform": ["linux"], "status": "affected", "versions": {"scheme": "generic", "value": "[0,1.3.0 Build 260311)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "Archer NX200 v2.0", "source": "cna", "vendor": "TP-Link Systems Inc."}, "product": "archer_nx200_v2.0", "vendor": "tp-link"}, {"configurations": [{"platform": ["linux"], "status": "affected", "versions": {"scheme": "generic", "value": "[0,1.3.0 Build 260311)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "Archer NX200 v2.20", "source": "cna", "vendor": "TP-Link Systems Inc."}, "product": "archer_nx200_v2.20", "vendor": "tp-link"}, {"configurations": [{"platform": ["linux"], "status": "affected", "versions": {"scheme": "generic", "value": "[0,1.3.0 Build 260309)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "Archer NX200 v3.0", "source": "cna", "vendor": "TP-Link Systems Inc."}, "product": "archer_nx200_v3.0", "vendor": "tp-link"}, {"configurations": [{"platform": ["linux"], "status": "affected", "versions": {"scheme": "generic", "value": "[0,1.3.0 Build 260311)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "Archer NX210 v2.0 v2.20", "source": "cna", "vendor": "TP-Link Systems Inc."}, "product": "archer_nx210_v2.0_v2.20", "vendor": "tp-link"}, {"configurations": [{"platform": ["linux"], "status": "affected", "versions": {"scheme": "generic", "value": "[0,1.3.0 Build 260309)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "Archer NX210 v3.0", "source": "cna", "vendor": "TP-Link Systems Inc."}, "product": "archer_nx210_v3.0", "vendor": "tp-link"}, {"configurations": [{"platform": ["linux"], "status": "affected", "versions": {"scheme": "generic", "value": "[0,1.3.0 Build 260311)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "Archer NX500 v1.0", "source": "cna", "vendor": "TP-Link Systems Inc."}, "product": "archer_nx500_v1.0", "vendor": "tp-link"}, {"configurations": [{"platform": ["linux"], "status": "affected", "versions": {"scheme": "generic", "value": "[0,1.5.0 Build 260309)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "Archer NX500 v2.0", "source": "cna", "vendor": "TP-Link Systems Inc."}, "product": "archer_nx500_v2.0", "vendor": "tp-link"}, {"configurations": [{"platform": ["linux"], "status": "affected", "versions": {"scheme": "generic", "value": "[0,1.4.0 Build 260311)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "Archer NX600 v1.0", "source": "cna", "vendor": "TP-Link Systems Inc."}, "product": "archer_nx600_v1.0", "vendor": "tp-link"}, {"configurations": [{"platform": ["linux"], "status": "affected", "versions": {"scheme": "generic", "value": "[0,1.3.0 Build 260311)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "Archer NX600 v2.0", "source": "cna", "vendor": "TP-Link Systems Inc."}, "product": "archer_nx600_v2.0", "vendor": "tp-link"}, {"configurations": [{"platform": ["linux"], "status": "affected", "versions": {"scheme": "generic", "value": "[0,1.3.0 Build 260309)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "Archer NX600 v3.0", "source": "cna", "vendor": "TP-Link Systems Inc."}, "product": "archer_nx600_v3.0", "vendor": "tp-link"}], "analysis": {"en": {"generated_at": "2026-03-23T19:23:03.684270+00:00", "value": {"mitigation_remediation": ["Apply the latest TP\u2011Link firmware update for the specific Archer model and firmware version to remove the missing authentication check.", "If an immediate update is not possible, restrict or disable external access to the device\u2019s HTTP management interface using firewall rules or network segmentation.", "After applying a patch or restriction, verify the device\u2019s firmware version to ensure it no longer matches any of the listed vulnerable versions and monitor system logs for unexpected HTTP activity."], "summary": {"action": "Immediate Patch", "impact": "Unauthorized privileged actions via HTTP."}, "threat_synthesis": {"affected_systems": "TP\u2011Link Systems Inc. products affected include the Archer NX200 (firmware versions 1.0, 2.0, 2.20, and 3.0), the Archer NX210 (2.0, 2.20, and 3.0), the Archer NX500 (1.0 and 2.0), and the Archer NX600 (1.0, 2.0, and 3.0).", "description_and_impact": "A missing authentication check on various HTTP server endpoints of certain TP\u2011Link Archer models allows an unauthenticated attacker to perform actions normally restricted to authenticated users. The vulnerability can be exploited to upload firmware and change configuration settings, giving an attacker the ability to modify device behavior, potentially embed malicious firmware, and undermine network security. This flaw is an example of missing authentication verification (CWE\u2011306).", "risk_and_exploitability": "The CVSS score of 8.6 indicates a high severity, and while the EPSS score is not available and the vulnerability is not listed in the CISA KEV catalog, the attack vector is inferred to be remote network access to the HTTP management interface. An attacker only needs to send specially crafted HTTP requests to the vulnerable CGI endpoints, which bypass authentication entirely, and can do so from any host that can reach the device\u2019s HTTP port. This represents a direct threat to confidentiality, integrity, and availability of the affected devices and any network they manage."}}}}, "created": "2026-03-24T10:33:30.499100+00:00", "updated": "2026-03-25T20:37:21.127248+00:00", "vendors": ["tp-link", "tp-link$PRODUCT$archer_nx200_v1.0", "tp-link$PRODUCT$archer_nx200_v2.0", "tp-link$PRODUCT$archer_nx200_v2.20", "tp-link$PRODUCT$archer_nx200_v3.0", "tp-link$PRODUCT$archer_nx210_v2.0_v2.20", "tp-link$PRODUCT$archer_nx210_v3.0", "tp-link$PRODUCT$archer_nx500_v1.0", "tp-link$PRODUCT$archer_nx500_v2.0", "tp-link$PRODUCT$archer_nx600_v1.0", "tp-link$PRODUCT$archer_nx600_v2.0", "tp-link$PRODUCT$archer_nx600_v3.0"]}