Primary

Context

TP-Link Archer AX53 Heap-Based Buffer Overflow Vulnerability Allowing Arbitrary Code Execution

Vulnerability

A heap-based buffer overflow vulnerability has been identified in the TP-Link Archer AX53 v1.0, specifically within the tmpserver modules. This vulnerability allows authenticated adjacent attackers to cause a segmentation fault or potentially execute arbitrary code. The issue arises from network packets that are crafted to include an excessive number of fields with zero-length values, exceeding the expected limits. This vulnerability affects Archer AX53 v1.0 versions through 1.3.1 Build 20241120.

Impact

Exploitation of this vulnerability can lead to a segmentation fault or arbitrary code execution on the affected device.

Remediation

Users are advised to update to the latest firmware version. The latest firmware for the Archer AX53 v1.0 can be downloaded from the TP-Link official website.

Added: Feb 3, 2026, 7:43 PM

Updated: Feb 3, 2026, 7:43 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

2.5

remediation

0.0

relevance

2.5

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

2.5

remediation

0.0

relevance

2.5

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

TP-Link Archer AX53 Heap-Based Buffer Overflow Vulnerability Allowing Arbitrary Code Execution

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating