Primary

Context

TP-Link Archer AX53 V1.0 OpenVPN Module External Configuration Control Vulnerability Allowing Arbitrary File Read

Vulnerability

A vulnerability in the OpenVPN module of the TP-Link Archer AX53 V1.0 router, prior to version 1.7.1 Build 20260213, allows an authenticated adjacent attacker to read arbitrary files by processing a malicious configuration file. This exploitation could lead to unauthorized access to sensitive information stored on the device.

Impact

Successful exploitation of this vulnerability could result in unauthorized access to arbitrary files on the device, potentially exposing sensitive information.

Remediation

Users are advised to update to the latest firmware version, 1.7.1 Build 20260213, available on the TP-Link official website. Note that this version upgrade is irreversible.

Added: Apr 8, 2026, 8:28 PM

Updated: Apr 8, 2026, 8:28 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

3.5

remediation

0.0

relevance

5.5

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

3.5

remediation

0.0

relevance

5.5

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

TP-Link Archer AX53 V1.0 OpenVPN Module External Configuration Control Vulnerability Allowing Arbitrary File Read

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating