PT-2026-6103 · Tp Link · Archer Be230
Zeix
·
Published
2026-02-03
·
Updated
2026-02-03
·
CVE-2026-22220
CVSS v4.0
6.8
Medium
| Vector | AV:A/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N |
Name of the Vulnerable Software and Affected Versions
TP-Link Archer BE230 versions prior to 1.2.4 Build 20251218 rel.70420
Description
A lack of proper input validation in the HTTP processing path within the web modules may allow a crafted request to cause the device’s web service to become unresponsive, leading to a denial of service. A network adjacent attacker with high privileges could cause the device’s web interface to temporarily stop responding until it recovers or is rebooted.
Recommendations
Update to version 1.2.4 Build 20251218 rel.70420 or later.
Fix
DoS
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Archer Be230