CVE-2025-15605

Hardcoded Cryptographic Key in Configuration Encryption Mechanism on TP-Link Archer NX200, NX210, NX500 and NX600

CVSS 8.5 HIGHEPSS 0.1%CWE-321

Vexday Risk Score

21Low

SSVC decision (CISA)

Track

No exploitation signal → monitor

CVSS 8.5EPSS 0.1%KEV nãoPoC —Nuclei —Metasploit —Patch referenciado

Lifecycle

23 Mar 2026Published on NVD

Recommendation: Monitor — no exploitation signal at the moment.

A hardcoded cryptographic key within the configuration mechanism on TP-Link Archer NX200, NX210, NX500 and NX600 enables decryption and re-encryption of device configuration data. An authenticated attacker may decrypt configuration files, modify them, and re-encrypt them, affecting the confidentiality and integrity of device configuration data.

CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

Affected products

TP-Link Systems Inc. · Archer NX200 v1.0 TP-Link Systems Inc. · Archer NX200 v2.0 TP-Link Systems Inc. · Archer NX200 v2.20 TP-Link Systems Inc. · Archer NX200 v3.0 TP-Link Systems Inc. · Archer NX210 v2.0 v2.20 TP-Link Systems Inc. · Archer NX210 v3.0 TP-Link Systems Inc. · Archer NX500 v1.0 TP-Link Systems Inc. · Archer NX500 v2.0 TP-Link Systems Inc. · Archer NX600 v1.0 TP-Link Systems Inc. · Archer NX600 v2.0 TP-Link Systems Inc. · Archer NX600 v3.0

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://www.tp-link.com/en/support/download/archer-nx200/#Firmware https://www.tp-link.com/en/support/download/archer-nx210/#Firmware https://www.tp-link.com/en/support/download/archer-nx500/#Firmware https://www.tp-link.com/en/support/download/archer-nx600/#Firmware https://www.tp-link.com/us/support/faq/5027/