CVE-2025-15517
HIGHAuthorization Bypass in HTTP Server Endpoints on TP-Link Archer NX200, NX210, NX500 and NX600
Title source: cnaDescription
A missing authentication check in the HTTP server on TP-Link Archer NX200, NX210, NX500 and NX600 to certain cgi endpoints allows unauthenticated access intended for authenticated users. An attacker may perform privileged HTTP actions without authentication, including firmware upload and configuration operations.
References (5)
Core 5
Core References
Vendor Advisory vendor-advisory
https://www.tp-link.com/us/support/faq/5027/
Scores
CVSS v3
8.1
EPSS
0.0007
EPSS Percentile
21.6%
Attack Vector
ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
total
Details
CWE
CWE-306
Status
published
Products (15)
tp-link/archer_nx200_firmware
< 1.3.0
tp-link/archer_nx210_firmware
< 1.3.0
tp-link/archer_nx500_firmware
< 1.5.0
tp-link/archer_nx600_firmware
< 1.3.0
TP-Link Systems Inc./Archer NX200 v1.0
< 1.8.0 Build 260311
TP-Link Systems Inc./Archer NX200 v2.0
< 1.3.0 Build 260311
TP-Link Systems Inc./Archer NX200 v2.20
< 1.3.0 Build 260311
TP-Link Systems Inc./Archer NX200 v3.0
< < 1.3.0 Build 260309
TP-Link Systems Inc./Archer NX210 v2.0 v2.20
< 1.3.0 Build 260311
TP-Link Systems Inc./Archer NX210 v3.0
< 1.3.0 Build 260309
... and 5 more
Published
Mar 23, 2026
Tracked Since
Mar 24, 2026