TP-Link Router Multiple Vulnerabilities

Release Date: 25 Mar 2026

RISK: Medium Risk

TYPE: Operating Systems - Networks OS

Multiple vulnerabilities were identified in TP-Link Router. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, remote code execution, elevation of privilege,  sensitive information disclosure and data manipulation on the targeted system.

---

Impact

• Data Manipulation
• Information Disclosure
• Elevation of Privilege
• Denial of Service
• Remote Code Execution

---

System / Technologies affected

• Archer AX53 v1 versions below V1_251029
• Archer NX200 v1.0 versions below 1.8.0 Build 260311
• Archer NX200 v2.0 versions below 1.3.0 Build 260311
• Archer NX200 v2.20 versions below 1.3.0 Build 260311
• Archer NX200 v3.0 versions below 1.3.0 Build 260309
• Archer NX210 v2.0 versions below 1.3.0 Build 260311
• Archer NX210 v2.20 versions below 1.3.0 Build 260311
• Archer NX210 v3.0 versions below 1.3.0 Build 260309
• Archer NX500 v1.0 versions below 1.3.0 Build 260311
• Archer NX500 v2.0 versions below 1.5.0 Build 260309
• Archer NX600 v1.0 versions below 1.4.0 Build 260311
• Archer NX600 v2.0 versions below 1.3.0 Build 260311
• Archer NX600 v3.0 versions below 1.3.0 Build 260309

---

Solutions

Before installation of the software, please visit the vendor web-site for more details.

 

Apply fixes issued by the vendor:

• https://www.tp-link.com/us/support/faq/5025/
• https://www.tp-link.com/us/support/faq/5027/

---

Vulnerability Identifier

• CVE-2025-15517
• CVE-2025-15605
• CVE-2025-15607
• CVE-2025-15608
• CVE-2026-15518
• CVE-2026-15519

---

Source

• TP-Link

---

Related Link

• https://www.tp-link.com/us/support/faq/5025/
• https://www.tp-link.com/us/support/faq/5027/