CVE-2026-30815
Modified Modified - Updated After Analysis
OS Command Injection in TP-Link Archer AX53 OpenVPN Module

Publication date: 2026-04-08

Last updated on: 2026-05-07

Assigner: TPLink

Description
An OS command injection vulnerability in the OpenVPN module of TP-Link Archer AX53 v1.0 allows an authenticated adjacent attacker to execute system commands when a specially crafted configuration file is processed due to insufficient input validation. Successful exploitation may allow modification of configuration files, disclosure of sensitive information, or further compromise of device integrity. This issue affects AX53 v1.0: before 1.7.1 Build 20260213.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-04-08
Last Modified
2026-05-07
Generated
2026-06-16
AI Q&A
2026-04-08
EPSS Evaluated
2026-06-15
NVD
CVE-2026-30815
EUVD
EUVD-2026-20544
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
tp-link archer_ax53_firmware to 1.7.1 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-78 The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

CVE-2026-30815 is an OS command injection vulnerability in the OpenVPN module of the TP-Link Archer AX53 v1.0 router. It allows an authenticated adjacent attacker to execute arbitrary system commands by processing a specially crafted configuration file due to insufficient input validation.

This means that if an attacker has the required authentication and is on the same network segment, they can exploit this flaw to run commands on the device that were not intended by the system.

Impact Analysis

Successful exploitation of this vulnerability can lead to modification of configuration files, disclosure of sensitive information, or further compromise of the device's integrity.

  • Modification of configuration files
  • Disclosure of sensitive information
  • Further compromise of device integrity
Mitigation Strategies

To mitigate the CVE-2026-30815 vulnerability in the TP-Link Archer AX53 v1.0 router, users are strongly advised to update the device firmware to version 1.7.1 Build 20260213 or later.

Compliance Impact

The vulnerability allows an authenticated adjacent attacker to execute arbitrary system commands, which can lead to modification of configuration files, disclosure of sensitive information, or further compromise of device integrity.

Such impacts on confidentiality, integrity, and availability could potentially affect compliance with common standards and regulations like GDPR and HIPAA, which require protection of sensitive information and system integrity.

However, the provided information does not explicitly state the direct effects on compliance with these standards.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-30815. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart