CVE-2025-15519 in Archer NX600 v3.0information

Résumé

par MITRE • 23/03/2026

Improper input handling in a modem-management administrative CLI command on TP-Link Archer NX200, NX210, NX500 and NX600 allows crafted input to be executed as part of an operating system command. An authenticated attacker with administrative privileges may execute arbitrary commands on the operating system, impacting the confidentiality, integrity, and availability of the device.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsable

TPLink

Réserver

13/01/2026

Divulgation

23/03/2026

Modérer

accepté

Entrée

VDB-352560

CPE

prêt

CWE

CWE-78 (confirmé)

CVSS

7.2 (NVD)

EPSS

0.00087

KEV

non

Activités

très faible

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2025-15519
NVD	https://nvd.nist.gov/vuln/detail/CVE-2025-15519
CVE Details	https://www.cvedetails.com/cve/CVE-2025-15519/

◂ Précédent Aperçu Suivant ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!