Vulnerability in Tp-link Systems Inc. Deco M5 V1

CVE-2026-5040

TP-Link Deco M5 v1 uses a weak password hashing mechanism to store user credentials. An attacker who obtains the password hash through system compromise or privileged access could perform brute-force or dictionary attacks. Successful exp…

Affected products

Weakness classification (CWE)

References