CVE-2026-5511
Analyzed Analyzed - Analysis Complete
Information Disclosure in TP-Link Archer AX72

Publication date: 2026-05-19

Last updated on: 2026-06-01

Assigner: TPLink

Description
In the web management interface of Archer AX72 (SG) v1, the network diagnostic feature improperly handles invalid user input, resulting in limited exposure of diagnostic command usage information.Β  An authenticated attacker with administrative privileges could exploit this issue to confirm the presence of the diagnostic utility and view its valid command-line syntax and options.Β  The exposed information is limited in scope and does not include sensitive system data.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-05-19
Last Modified
2026-06-01
Generated
2026-06-10
AI Q&A
2026-05-19
EPSS Evaluated
2026-06-08
NVD
CVE-2026-5511
EUVD
EUVD-2026-30955
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
tp-link archer_ax72_firmware to 1.4.6 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-209 The product generates an error message that includes sensitive information about its environment, users, or associated data.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

CVE-2026-5511 is an information disclosure vulnerability in the web management interface of the TP-Link Archer AX72 (SG) v1 router. Specifically, the network diagnostic feature improperly handles invalid user input, which allows an authenticated attacker with administrative privileges to confirm the presence of the diagnostic utility and view its valid command-line syntax and options.

The exposed information is limited and does not include sensitive system data.

Impact Analysis

This vulnerability allows an authenticated attacker with administrative privileges to gain limited information about the diagnostic commands available on the device. While the information disclosed is limited to command usage and does not include sensitive system data, it could potentially aid an attacker in understanding the device's diagnostic capabilities.

The overall impact is considered medium severity with a CVSS v4.0 score of 4.6.

Detection Guidance

This vulnerability involves the web management interface of the Archer AX72 (SG) v1 router and specifically the network diagnostic feature that improperly handles invalid user input. Detection would require verifying if an authenticated user with administrative privileges can access the diagnostic utility and view its command-line syntax and options.

There are no specific commands or network detection methods provided in the available information to detect this vulnerability on your system or network.

Mitigation Strategies

To mitigate this vulnerability, it is strongly recommended to update the affected Archer AX72 (SG) v1 router to the latest firmware version SG 1.4.6 Build 20260112 rel.66206 or later.

This firmware update addresses the information disclosure issue by correcting the improper input validation in the network diagnostic feature.

Compliance Impact

The vulnerability in CVE-2026-5511 results in limited exposure of diagnostic command usage information to authenticated administrators. The exposed information does not include sensitive system data.

Because the information disclosed is limited and does not include sensitive data, the impact on compliance with common standards and regulations such as GDPR or HIPAA is likely minimal. However, any information disclosure vulnerability could potentially be a concern depending on the specific regulatory environment and risk assessment.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-5511. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart