216.73.216.169

CVE-2026-0620

· Published 03/02/2026 19:16 · Modified 04/02/2026 16:33

Labels: CVE-2026-0620 2026-02-03CVE-2026-0620CWE-693f23511db-6c3e-4e32-a477-6aa17d310630

Essential information

Published
03/02/2026 19:16
Modified
04/02/2026 16:33
Author
Creator
CVSS
6.0 MEDIUM (v3) 6.0 MEDIUM (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

When configured as L2TP/IPSec VPN server, Archer AXE75 V1 may accept connections using L2TP without IPSec protection, even when IPSec is enabled.  This allows VPN sessions without encryption, exposing data in transit and compromising confidentiality.

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
f23511db-6c3e-4e32-a477-6aa17d310630
NVD
View on NVD

Affected products (CPE)

ProductCPE
archer / axe75 cpe:2.3:a:archer:axe75:v1:*:*:*:*:*:*:*

References