Buffer Overflow Vulnerability in AX53 Router by TP-Link
CVE-2025-15608

7.7HIGH

Key Information:

Vendor: Tp-link Systems Inc.
Status: Ax53 V1
Vendor: CVE Published:; 20 March 2026

🔔 Create Tp-link Systems Inc. Vulnerability Alert

What is CVE-2025-15608?

A buffer overflow vulnerability exists in the TP-Link AX53 router (v1) due to inadequate input validation in its probe handling logic. This flaw allows for unvalidated parameters to trigger a stack-based buffer overflow, potentially leading to service crashes. Exploitation of this flaw could result in service disruptions and, under certain circumstances, may permit remote code execution through advanced techniques like heap-spraying, thus possibly granting attackers control over the device.

Affected Version(s)

AX53 v1 0 < 251029

References

https://www.tp-link.com/en/support/download/archer-ax53/v...

patch

https://www.tp-link.com/us/support/faq/5025/

vendor-advisory

CVSS V4

Score:

7.7

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

High

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 20, 2026
Vulnerability Reserved
Mar 10, 2026

Credit

samuzora

CVE-2025-15608 Data

JSON