Primary

Context

TP-Link Archer AX50 Stack-Based Buffer Overflow Vulnerability Allowing Arbitrary Code Execution

Vulnerability

Patched

A stack-based buffer overflow vulnerability has been identified in the 'conn-indicator' binary of the TP-Link Archer AX50 router. This vulnerability affects firmware versions prior to 1.0.15 build 241203 rel61480 and allows an attacker to execute arbitrary code on the device. The issue arises from the binary running with root privileges, creating a significant security risk. Exploitation can occur over both LAN and WAN networks.

Impact

Exploitation of this vulnerability could lead to unauthorized arbitrary code execution on the affected router.

Remediation

Users can upgrade to TP-Link Archer AX50 firmware version 1.0.15 build 241203 rel61480 to address this vulnerability.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

5.7

impact

7.5

exploitability

7.0

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

5.7

impact

7.5

exploitability

7.0

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

TP-Link Archer AX50 Stack-Based Buffer Overflow Vulnerability Allowing Arbitrary Code Execution

Vulnerability

Impact

Remediation

Affected Products

TP-Link Archer AX50

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating