TP-Link Archer NX200
Moderate fix1 remedy
Moderate fix1 remedy
- < 1.3.0 Build 260309
- < 1.3.0 Build 260311
- < 1.8.0 Build 260311
TP-Link Archer Series Command Injection Vulnerability in Modem Management CLI
Vulnerability
Patched
A command injection vulnerability has been identified in the TP-Link Archer NX200, NX210, NX500, and NX600 routers. This vulnerability arises from improper input handling in a modem-management administrative command line interface (CLI) command. An authenticated attacker with administrative privileges can exploit this vulnerability to execute arbitrary operating system commands, potentially affecting the device's functionality and security.
Impact
Exploitation of this vulnerability allows authenticated attackers with administrative rights to execute arbitrary commands on the affected device's operating system.
Remediation
Users are advised to update to the latest firmware version. The latest firmware for each affected model can be downloaded from the TP-Link support website.
Added: Mar 23, 2026, 6:21 PM
Updated: Mar 23, 2026, 6:21 PM
Vulnerability Rating
Custom Algorithm
spread
0.0impact
7.5exploitability
3.0remediation
0.0relevance
4.6threat
0.0urgency
2.9incentive
0.0Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.