CVE-2025-6982
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-07-16

Last updated on: 2026-04-22

Assigner: TPLink

Description
Use of Hard-coded Credentials in TP-Link Archer C50 V3( <= 180703)/V4( <= 250117 )/V5( <= 200407 ), and C20 V5 (
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-07-16
Last Modified
2026-04-22
Generated
2026-05-27
AI Q&A
2025-07-16
EPSS Evaluated
2026-05-25
NVD
CVE-2025-6982
Affected Vendors & Products
Showing 3 associated CPEs
Vendor Product Version / Range
tp-link archer_c50 v5
tp-link archer_c50 v3
tp-link archer_c50 v4
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-798 The product contains hard-coded credentials, such as a password or cryptographic key.
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?

This vulnerability involves the use of hard-coded credentials in certain versions of the TP-Link Archer C50 router (V3, V4, and V5). Because of these hard-coded credentials, attackers can decrypt the config.xml files on the device, potentially gaining access to sensitive configuration information.


How can this vulnerability impact me? :

The vulnerability can allow attackers to decrypt configuration files on affected TP-Link Archer C50 devices, which may expose sensitive network settings and credentials. This could lead to unauthorized access to the network or device, compromising security and privacy.


Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70
EPSS Chart