Volerion logoVolerion
Volerion logoVolerion

TP-Link Archer AX72 Information Disclosure Vulnerability in Web Management Interface

Vulnerability

A vulnerability exists in the web management interface of the TP-Link Archer AX72 (SG) v1 router. The issue arises in the network diagnostic feature, which fails to properly validate user input. This flaw allows an authenticated attacker with administrative privileges to exploit the vulnerability, confirming the presence of the diagnostic utility and accessing its command-line syntax and options. However, the exposed information is limited and does not include sensitive system data.

Impact

Exploitation of this vulnerability could lead to unauthorized confirmation of the diagnostic utility's presence and access to its command-line options, potentially aiding in further attacks.

Remediation

Users are advised to update their devices to the latest firmware version 1.4.6 Build 20260112, which addresses this vulnerability.

Added: May 19, 2026, 5:20 PM
Updated: May 19, 2026, 5:20 PM

Vulnerability Rating

Custom Algorithm
spread
0.0
impact
0.6
exploitability
3.0
remediation
0.0
relevance
8.8
threat
0.0
urgency
2.9
incentive
0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.