CVE-2025-15545 - Insufficient Backup File Upload Input Validation on TP-Link Archer RE605X

CVE ID : CVE-2025-15545 Published : 29. Januar 2026 18:16 | 1 Stunde, 11 Minuten ago Description : The backup restore function does not properly validate unexpected or unrecognized tags within the backup file. When such a crafted file is restored, the injected tag is interpreted by a shell, allowing execution of arbitrary commands with root privileges. Successful exploitation allows the attacker to gain root-level command execution, compromising confidentiality, integrity and availability. Severity: 7.3 | HIGH Visit the link for more details, such as CVSS details, affected products, timeline, and more...