Security Advisory

CVE-2025-15605

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-03-23 18:02:01
Last updated 2026-03-24 03:56:03
Assigner TPLink
State PUBLISHED

Description

A hardcoded cryptographic key within the configuration mechanism on TP-Link Archer NX200, NX210, NX500 and NX600 enables decryption and re-encryption of device configuration data. An authenticated attacker may decrypt configuration files, modify them, and re-encrypt them, affecting the confidentiality and integrity of device configuration data.