CVE-2026-22222 - Vulnerability Details

- Command Injection Vulnerability on TP-Link Archer BE230 v1.2

Description

An OS Command Injection vulnerability in TP-Link Archer BE230 v1.2(web modules) allows adjacent

authenticated

attacker to execute arbitrary code. Successful exploitation could allow an attacker to gain full administrative control of the device, resulting in severe compromise of configuration integrity, network security, and service availability.

This CVE covers one of multiple distinct OS command injection issues identified across separate code paths. Although similar in nature, each instance is tracked under a unique CVE ID.This issue affects Archer BE230 v1.2 < 1.2.4 Build 20251218 rel.70420.

Published: 2026-02-02

Score: 8.5 High

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

The vulnerability is an OS command injection in the web modules of TP‑Link Archer BE230 v1.2. An attacker who has authenticated on a network adjacent to the device can trigger the injection by passing specially crafted input to the firmware. The injection allows arbitrary operating‑system commands to run with root privileges on the device. Successful exploitation would grant the attacker full administrative control, enabling configuration tampering, denial‑of‑service, and covert network monitoring.

Affected Systems

TP‑Link Archer BE230 “v1.2” routers running firmware builds older than 1.2.4 (build 20251218 rel.70420). Any router identified as TP‑Link Systems Inc. Archer BE230 v1.2 in the specified firmware family is susceptible.

Risk and Exploitability

The vulnerability scores as a high‑severity CVSS 8.5, yet the EPSS score is under 1 %, indicating a low current exploitation likelihood. It is not listed in CISA’s KEV catalog. The exploit requires the attacker to have authenticated access from a nearby network segment, which is a common scenario for devices exposed on untrusted networks. If exploited, the attacker can execute arbitrary commands that could lead to full device takeover, exposing sensitive routing data and potentially pivoting into connected systems.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

TP-Link Systems Inc.

Archer BE230 v1.2

unaffected

Version	Status	Constraints
`0`	affected	< 1.2.4 Build 20251218 rel.70420

Configuration 1 [-]

AND

cpe:2.3:o:tp-link:archer_be230_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:tp-link:archer_be230:1.20:*:*:*:*:*:*:*

No data.

Vendor	Product	Confidence	Versions
Tp-link	Archer Be230	—	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Update the router firmware to a version newer than 1.2.4 (any post‑1.2.4 build).
Disable or restrict remote web management interfaces to trusted networks only.
Enforce strong, unique passwords for all administrative accounts. (If an immediate firmware upgrade is not feasible, block inbound traffic to the default web management port (80/443) from untrusted sources and monitor logs for anomalous command executions.)

Generated by OpenCVE AI on April 18, 2026 at 14:17 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required High

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact High

Vulnerable System Integrity Impact High

Vulnerable System Availability Impact High

Subsequent System Confidentiality Impact Low

Subsequent System Integrity Impact Low

Subsequent System Availability Impact Low

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00079.

Exploitation none

Automatable no

Technical Impact total

References

Link	Providers
https://www.tp-link.com/en/support/download/archer-be230/v1.20/#Firmware
https://www.tp-link.com/sg/support/download/archer-be230/v1.20/#Firmware
https://www.tp-link.com/us/support/download/archer-be230/v1.20/#Firmware
https://www.tp-link.com/us/support/faq/4935/

History

Fri, 06 Feb 2026 18:45:00 +0000

Type	Values Removed	Values Added
First Time appeared		Tp-link archer Be230 Firmware
CPEs		cpe:2.3:h:tp-link:archer_be230:1.20:::::::* cpe:2.3:o:tp-link:archer_be230_firmware::::::::
Vendors & Products		Tp-link archer Be230 Firmware
Metrics		cvssV3_1 `{'score': 8.0, 'vector': 'CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H'}`

Wed, 04 Feb 2026 12:30:00 +0000

Type	Values Removed	Values Added
First Time appeared		Tp-link Tp-link archer Be230
Vendors & Products		Tp-link Tp-link archer Be230

Mon, 02 Feb 2026 19:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Mon, 02 Feb 2026 18:00:00 +0000

Type	Values Removed	Values Added
Description		An OS Command Injection vulnerability in TP-Link Archer BE230 v1.2(web modules) allows adjacent authenticated attacker to execute arbitrary code. Successful exploitation could allow an attacker to gain full administrative control of the device, resulting in severe compromise of configuration integrity, network security, and service availability. This CVE covers one of multiple distinct OS command injection issues identified across separate code paths. Although similar in nature, each instance is tracked under a unique CVE ID.This issue affects Archer BE230 v1.2 < 1.2.4 Build 20251218 rel.70420.
Title		Command Injection Vulnerability on TP-Link Archer BE230 v1.2
Weaknesses		CWE-78
References		https://www.tp-link.com/en/support/download/archer-be230/v1.20/#Firmware https://www.tp-link.com/sg/support/download/archer-be230/v1.20/#Firmware https://www.tp-link.com/us/support/download/archer-be230/v1.20/#Firmware https://www.tp-link.com/us/support/faq/4935/
Metrics		cvssV4_0 `{'score': 8.5, 'vector': 'CVSS:4.0/AV:A/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L'}`

Subscriptions

Tp-link Archer Be230 Archer Be230 Firmware

MITRE

Status: PUBLISHED

Assigner: TPLink

Published: 2026-02-02T17:49:22.166Z

Updated: 2026-02-26T15:04:32.952Z

Reserved: 2026-01-06T18:18:52.126Z

Link: CVE-2026-22222

Vulnrichment

Updated: 2026-02-02T18:52:51.290Z

NVD

Status : Analyzed

Published: 2026-02-02T18:16:14.870

Modified: 2026-02-06T18:35:31.283

Link: CVE-2026-22222

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-04-18T14:30:02Z

Weaknesses

CWE-78

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required High

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact High

Vulnerable System Integrity Impact High

Vulnerable System Availability Impact High

Subsequent System Confidentiality Impact Low

Subsequent System Integrity Impact Low

Subsequent System Availability Impact Low

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Exploitation none

Automatable no

Technical Impact total

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object