216.73.217.172

CVE-2025-15551

· Published 05/02/2026 18:16 · Modified 05/02/2026 20:47

Labels: CVE-2025-15551 2026-02-05CVE-2025-15551CWE-95f23511db-6c3e-4e32-a477-6aa17d310630

Essential information

Published
05/02/2026 18:16
Modified
05/02/2026 20:47
Author
Creator
CVSS
5.9 MEDIUM (v3) 5.9 MEDIUM (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

The response coming from TP-Link Archer MR200 v5.2, C20 v6, TL-WR850N v3, and TL-WR845N v4 for any request is getting executed by the JavaScript function like eval directly without any check. Attackers can exploit this vulnerability via a Man-in-the-Middle (MitM) attack to execute JavaScript code on the router's admin web portal without the user's permission or knowledge.

NVD status

Status
Undergoing Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
f23511db-6c3e-4e32-a477-6aa17d310630
NVD
View on NVD

Affected products (CPE)

ProductCPE
tp-link / archer mr200 cpe:2.3:a:tp-link:archer_mr200:5.2:*:*:*:*:*:*:*
tp-link / c20 cpe:2.3:a:tp-link:c20:6:*:*:*:*:*:*:*
tp-link / tl-wr850n cpe:2.3:a:tp-link:tl-wr850n:3:*:*:*:*:*:*:*
tp-link / tl-wr845n cpe:2.3:a:tp-link:tl-wr845n:4:*:*:*:*:*:*:*

References