CVE-2025-15568

Name of the Vulnerable Software and Affected Versions Archer AXE75 versions 1.0 through 1.3.2 Build 20250107

Description A command injection issue exists in the web module of the Archer AXE75 router. An authenticated attacker with adjacent-network access may be able to execute remote code (RCE) when the router is configured with sysmode=ap. Successful exploitation grants root-level privileges, potentially impacting the confidentiality, integrity, and availability of the device.

Recommendations Archer AXE75 versions 1.0 through 1.3.2 Build 20250107: At the moment, there is no information about a newer version that contains a fix for this vulnerability.