CVE-2025-40634

CRITICAL

TP-Link Archer AX50 <1.0.15 - Buffer Overflow

Title source: llm

Description

Stack-based buffer overflow vulnerability in the 'conn-indicator' binary running as root on the TP-Link Archer AX50 router, in firmware versions prior to 1.0.15 build 241203 rel61480. This vulnerability allows an attacker to execute arbitrary code on the device over LAN and WAN networks.

Exploits (2)

nomisec WORKING POC 30 stars

by hacefresko · poc

https://github.com/hacefresko/CVE-2025-40634

View Code ZIP pw:eip

github WORKING POC 5 stars

by hacefresko · pythonpoc

https://github.com/hacefresko/CVEs/tree/main/CVE-2025-40634

View Code ZIP pw:eip

References (1)

[Third Party Advisory] https://www.incibe.es/en/incibe-cert/notices/aviso/stack-based-buffer-overflow-tp-link-archer-ax50

Scores

CVSS v4 9.2

EPSS 0.0015

EPSS Percentile 36.0%

CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Details

CWE

CWE-121

Status published

Products (1)

TP-Link/Link Archer AX50 < 1.0.15 build 241203 rel61480

Published May 20, 2025

Tracked Since Feb 18, 2026