Security Advisory

CVE-2026-0620

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-02-03 18:05:44

Last updated 2026-02-04 20:46:15

Assigner TPLink

State PUBLISHED

Description

When configured as L2TP/IPSec VPN server, Archer AXE75 V1 may accept connections using L2TP without IPSec protection, even when IPSec is enabled. This allows VPN sessions without encryption, exposing data in transit and compromising confidentiality.

← Browse all CVEs View on cve.org ↗