PT-2025-36367 · Ax10 +1 · Ax10 +1

Byteray

Published

2025-09-06

Updated

2025-09-18

CVE-2025-9961

CVSS v2.0

9.0

Vector

AV:N/AC:L/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions:

TP-Link AX10 versions prior to 1.2.1

TP-Link AX1500 versions prior to 1.3.11

Description:

An authenticated attacker may remotely execute arbitrary code via the CWMP binary on the affected devices. Exploitation requires a Man-In-The-Middle (MITM) attack. The vulnerability is due to a buffer copy without proper input size validation.

Recommendations:

TP-Link AX10 versions prior to 1.2.1: Update to version 1.2.1 or later.

TP-Link AX1500 versions prior to 1.3.11: Update to version 1.3.11 or later.

Fix

RCE

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-120

Related Identifiers

BDU:2025-10825

CVE-2025-9961

Affected Products

Ax10

Ax1500

PT-2025-36367 · Ax10 +1 · Ax10 +1

Weakness Enumeration

Related Identifiers

Affected Products

References · 13