- EPSS 0.17%
- Veröffentlicht 08.04.2026 17:54:44
- Zuletzt bearbeitet 07.05.2026 16:16:18
An OS command injection vulnerability in the dnsmasq module of TP-Link Archer AX53 v1.0 allows an authenticated adjacent attacker to execute arbitrary code when a specially crafted configuration file is processed due to insufficient input validation....
CVE-2026-30817
- EPSS 0.04%
- Veröffentlicht 08.04.2026 17:53:58
- Zuletzt bearbeitet 07.05.2026 16:16:18
An external configuration control vulnerability in the OpenVPN module of TP-Link AX53 v1.0 allows an authenticated adjacent attacker to read arbitrary files when a malicious configuration file is processed. Successful exploitation may allow unauthor...
CVE-2026-30816
- EPSS 0.04%
- Veröffentlicht 08.04.2026 17:53:20
- Zuletzt bearbeitet 07.05.2026 16:16:18
An external control of configuration vulnerability in the OpenVPN module of TP-Link AX53 v1.0 allows an authenticated adjacent attacker to read arbitrary file when a malicious configuration file is processed. Successful exploitation may allow unauth...
- EPSS 0.18%
- Veröffentlicht 08.04.2026 17:52:29
- Zuletzt bearbeitet 07.05.2026 16:16:18
An OS command injection vulnerability in the OpenVPN module of TP-Link Archer AX53 v1.0 allows an authenticated adjacent attacker to execute system commands when a specially crafted configuration file is processed due to insufficient input validation...
- EPSS 0.04%
- Veröffentlicht 08.04.2026 17:52:00
- Zuletzt bearbeitet 07.05.2026 16:16:18
A stack-based buffer overflow in the tmpServer module of TP-Link Archer AX53 v1.0 allows an authenticated adjacent attacker to trigger a segmentation fault and potentially execute arbitrary code via a specially crafted configuration file. Successful ...
CVE-2025-15608
- EPSS 0.26%
- Veröffentlicht 20.03.2026 16:31:38
- Zuletzt bearbeitet 02.04.2026 20:53:59
This vulnerability in AX53 v1 results from insufficient input sanitization in the device’s probe handling logic, where unvalidated parameters can trigger a stack-based buffer overflow that causes the affected service to crash and, under specific cond...
CVE-2025-15607
- EPSS 0.31%
- Veröffentlicht 20.03.2026 16:31:12
- Zuletzt bearbeitet 02.04.2026 20:53:50
A command injection vulnerability on AX53 v1 occurs in mscd debug functionality due to insufficient input handling, allowing log redirection to arbitrary files and concatenation of unvalidated file content into shell commands, enabling authenticated ...
CVE-2025-62501
- EPSS 0.02%
- Veröffentlicht 03.02.2026 19:16:14
- Zuletzt bearbeitet 16.03.2026 18:16:04
SSH Hostkey misconfiguration vulnerability in TP-Link Archer AX53 v1.0 (tmpserver modules) allows attackers to obtain device credentials through a specially crafted man‑in‑the‑middle (MITM) attack. This could enable unauthorized access if captured cr...
- EPSS 0.01%
- Veröffentlicht 03.02.2026 19:16:14
- Zuletzt bearbeitet 16.03.2026 18:16:04
Heap-based Buffer Overflow vulnerability in TP-Link Archer AX53 v1.0 (tdpserver modules) allows adjacent attackers to cause a segmentation fault or potentially execute arbitrary code via a specially crafted network packet containing a maliciously for...
- EPSS 0.01%
- Veröffentlicht 03.02.2026 19:16:13
- Zuletzt bearbeitet 16.03.2026 18:16:04
Heap-based Buffer Overflow vulnerability in TP-Link Archer AX53 v1.0 (tmpserver modules) allows authenticated adjacent attackers to cause a segmentation fault or potentially execute arbitrary code via a specially crafted network packet containing a f...