CVE-2026-30816

Published: Apr 08, 2026 Last Modified: Apr 14, 2026

ExploitDB:

Other exploit source:

Google Dorks:

MEDIUM 6,8

Source: f23511db-6c3e-4e32-a477-6aa17d310630

Attack Vector: adjacent

Attack Complexity: low

Privileges Required: high

User Interaction: none

Confidentiality: N/A

Integrity: N/A

Availability: N/A

MEDIUM 5,7

Source: [email protected]

Attack Vector: adjacent_network

Attack Complexity: low

Privileges Required: low

User Interaction: none

Scope: unchanged

Confidentiality: high

Integrity: none

Availability: none

Description

AI Translation Available

An external control of configuration vulnerability in the OpenVPN module of TP-Link AX53 v1.0 allows an authenticated adjacent attacker to read arbitrary file when a malicious configuration file is processed.
Successful
exploitation may allow unauthorized access to arbitrary files on the device,
potentially exposing sensitive information.This issue affects AX53 v1.0: before 1.7.1 Build 20260213.

EPSS (Exploit Prediction Scoring System)

Trend Analysis

EPSS (Exploit Prediction Scoring System)

Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.

EPSS Score

0,0002

Percentile

0,0th

Updated

EPSS Score Trend (Last 8 Days)

External Control of System or Configuration Setting

Incomplete

Abstraction: Base Structure: Simple

Common Consequences

Security Scopes Affected:

Other

Potential Impacts:

Varies By Context

Applicable Platforms

Technologies: ICS/OT, Not Technology-Specific

View CWE Details

610

Externally Controlled Reference to a Resource in Another Sphere

Draft

Abstraction: Class Structure: Simple

Common Consequences

Security Scopes Affected:

Confidentiality Integrity Access Control

Potential Impacts:

Read Application Data Modify Application Data Gain Privileges Or Assume Identity

Applicable Platforms

All platforms may be affected

View CWE Details

Operating System

Archer Ax53 Firmware by Tp-Link

Product Information

Vendor Tp-Link

Product Archer Ax53 Firmware

Version Range Affected

To 1.7.1 (inclusive)

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:tp-link:archer_ax53_firmware:*:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

https://talosintelligence.com/vulnerability_reports/

https://www.tp-link.com/en/support/download/archer-ax53/v1/…

https://www.tp-link.com/en/support/download/archer-ax53/v1/#Firmware

https://www.tp-link.com/my/support/download/archer-ax53/v1/…

https://www.tp-link.com/my/support/download/archer-ax53/v1/#Firmware

https://www.tp-link.com/us/support/faq/5055/

CVE-2026-30816

Description

EPSS (Exploit Prediction Scoring System)

EPSS (Exploit Prediction Scoring System)

EPSS Score Trend (Last 8 Days)

External Control of System or Configuration Setting

Common Consequences

Applicable Platforms

Externally Controlled Reference to a Resource in Another Sphere

Common Consequences

Applicable Platforms

Archer Ax53 Firmware by Tp-Link

Product Information

Iscriviti alla newsletter