Impact
The flaw originates from insufficient sanitization of network probe parameters. A crafted probe can overflow a stack buffer in the handling function, causing the service to crash. Under specific circumstances, the overflow may be leveraged with complex heap‑spray techniques to achieve remote code execution. Successful exploitation results in repeated service unavailability and, in certain scenarios, control over the device.
Affected Systems
TP‑Link Archer AX53 router, version 1.0 (v1), as well as TP‑Link Archer AX55 router, versions 4 and 4.6, are all affected.
Risk and Exploitability
The CVSS score of 7.7 indicates a high severity, and an EPSS score of less than 1% suggests a low likelihood of widespread exploitation at present. The vulnerability is not listed in CISA’s KEV catalog. It is inferred that an adversary could exploit the flaw by sending a crafted network probe from an external network to the router, triggering the buffer overflow and potentially executing code on the device. Affected devices include the TP‑Link Archer AX53 v1, AX55 v4, and AX55 v4.6.
OpenCVE Enrichment