Open Redirect in Tp-link Systems Inc. Archer Ax20 V2.0
CVE-2026-10562
An unauthenticated URL redirection vulnerability has been identified in Archer AX20 V2 due to improper validation of user-supplied URL input within the web interface. An unauthenticated attacker can craft URLs containing URL-encoded path…
Vulnerability class: Open Redirect
Affected products
- Tp-link Systems Inc. Archer Ax20 V2.0 — versions 0
Weakness classification (CWE)
References
- f23511db-6c3e-4e32-a477-6aa17d310630 (patch)
- f23511db-6c3e-4e32-a477-6aa17d310630 (vendor-advisory)