Primary

Context

TP-Link Archer AX53 SSH Hostkey Misconfiguration Vulnerability Allowing MITM Credential Interception

Vulnerability

A vulnerability exists in the TP-Link Archer AX53 v1.0 within the tmpserver modules, related to SSH hostkey misconfiguration. This flaw allows attackers to intercept device credentials through a crafted man-in-the-middle (MITM) attack. Captured credentials could be reused for unauthorized access. The vulnerability affects Archer AX53 v1.0, prior to v1.260119.

Impact

Exploitation of this vulnerability could lead to unauthorized access to the device, using intercepted credentials.

Remediation

Users are advised to update to the latest firmware version. The updated firmware can be downloaded from the TP-Link official website, specifically from the download section for the Archer AX53 v1.0.

Added: Feb 3, 2026, 7:41 PM

Updated: Feb 3, 2026, 7:41 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.2

remediation

0.0

relevance

2.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.2

remediation

0.0

relevance

2.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

TP-Link Archer AX53 SSH Hostkey Misconfiguration Vulnerability Allowing MITM Credential Interception

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating