What is CVE-2026-30817?

CVE-2026-30817 is a medium-severity vulnerability in Tp-link Archer_ax53, classified under CWE-15. CVSS score: 5.7/10. Published 2026-04-08.

How severe is CVE-2026-30817?

Medium severity. CVSS v3 base score is 5.7 out of 10.

Vulnerability in Tp-link Archer_ax53

CVE-2026-30817

An external configuration control vulnerability in the OpenVPN module of TP-Link AX53 v1.0 allows an authenticated adjacent attacker to read arbitrary files when a malicious configuration file is processed. Successful exploitation may all…

EPSS: 0.000 (9.1th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 5.7 (Medium). Vector: CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N.

Affected products

Tp-link Archer_ax53 — versions 1.0
Tp-link Archer_ax53_firmware
Tp-link Systems Inc. Ax53 V1.0 — versions 0

Weakness classification (CWE)

References

f23511db-6c3e-4e32-a477-6aa17d310630 (Product, patch)
f23511db-6c3e-4e32-a477-6aa17d310630 (Product, patch)
f23511db-6c3e-4e32-a477-6aa17d310630 (Third Party Advisory, third-party-advisory)
f23511db-6c3e-4e32-a477-6aa17d310630 (vendor-advisory, Vendor Advisory)
af854a3a-2127-422b-91ae-364da2661108

Frequently asked questions

What is CVE-2026-30817?: CVE-2026-30817 is a medium-severity vulnerability in Tp-link Archer_ax53, classified under CWE-15. CVSS score: 5.7/10. Published 2026-04-08.
How severe is CVE-2026-30817?: Medium severity. CVSS v3 base score is 5.7 out of 10.