Primary

Context

TP-Link Archer BE400 NULL Pointer Dereference Vulnerability Leading to Denial-of-Service

Vulnerability

A NULL pointer dereference vulnerability has been identified in the TP-Link Archer BE400 V1, specifically in the 802.11 modules. This vulnerability allows an adjacent attacker to cause a denial-of-service (DoS) by triggering a device reboot. The issue affects Archer BE400 versions through 1.1.0 Build 20250710 rel.14914.

Impact

Exploitation of this vulnerability can cause the device to reboot, disrupting its normal operation and availability.

Remediation

Users are advised to download and update to the latest firmware version. The updated firmware can be obtained from the TP-Link official website for the user's region.

Added: Jan 7, 2026, 3:18 PM

Updated: Jan 7, 2026, 3:18 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.9

remediation

7.7

relevance

2.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.9

remediation

7.7

relevance

2.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

TP-Link Archer BE400 NULL Pointer Dereference Vulnerability Leading to Denial-of-Service

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating