Description
A privilege escalation vulnerability exists in the HTTP authentication component in Archer VX1800v v1. Improper handling of user-controlled input may allow newline characters to be injected into internally constructed configuration data.
An
authenticated user with sufficient privileges may be able to modify account
settings and gain elevated administrative privileges.
An
authenticated user with sufficient privileges may be able to modify account
settings and gain elevated administrative privileges.
No analysis available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
No advisories yet.
References
History
Tue, 14 Jul 2026 18:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Tue, 14 Jul 2026 17:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | A privilege escalation vulnerability exists in the HTTP authentication component in Archer VX1800v v1. Improper handling of user-controlled input may allow newline characters to be injected into internally constructed configuration data. An authenticated user with sufficient privileges may be able to modify account settings and gain elevated administrative privileges. | |
| Title | Privilege Escalation via Improper Input Sanitization in TP-Link Archer VX1800v | |
| Weaknesses | CWE-93 | |
| References |
| |
| Metrics |
cvssV4_0
|
Subscriptions
No data.
Status: PUBLISHED
Assigner: TPLink
Published:
Updated: 2026-07-14T17:53:11.369Z
Reserved: 2026-07-10T16:59:17.389Z
Link: CVE-2026-15429
Updated: 2026-07-14T17:53:08.683Z
No data.
No data.
OpenCVE Enrichment
No data.
Weaknesses
-
CWE-93
Improper Neutralization of CRLF Sequences ('CRLF Injection')